Vulnerabilities > Vmware > ONE Access

DATE CVE VULNERABILITY TITLE RISK
2022-08-05 CVE-2022-31656 Unspecified vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users.
network
low complexity
vmware
critical
 9.8
9.8
2022-08-05 CVE-2022-31657 Open Redirect vulnerability in VMWare products
VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability.
network
low complexity
vmware CWE-601
critical
 9.8
9.8
2022-08-05 CVE-2022-31658 Injection vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability.
network
low complexity
vmware CWE-74
7.2
7.2
2022-08-05 CVE-2022-31659 SQL Injection vulnerability in VMWare products
VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability.
network
low complexity
vmware CWE-89
7.2
7.2
2022-08-05 CVE-2022-31660 Unspecified vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability.
local
low complexity
vmware
7.8
7.8
2022-08-05 CVE-2022-31661 Unspecified vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two privilege escalation vulnerabilities.
local
low complexity
vmware
7.8
7.8
2022-08-05 CVE-2022-31662 Path Traversal vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager, Connectors and vRealize Automation contain a path traversal vulnerability.
network
low complexity
vmware CWE-22
7.5
7.5
2022-08-05 CVE-2022-31663 Cross-site Scripting vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability.
network
low complexity
vmware CWE-79
6.1
6.1
2022-08-05 CVE-2022-31664 Unspecified vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability.
local
low complexity
vmware
7.8
7.8
2022-08-05 CVE-2022-31665 Injection vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability.
network
low complexity
vmware CWE-74
7.2
7.2