Vulnerabilities > Vmware

DATE CVE VULNERABILITY TITLE RISK
2022-08-05 CVE-2022-31657 Open Redirect vulnerability in VMWare products
VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability.
network
low complexity
vmware CWE-601
critical
 9.8
9.8
2022-08-05 CVE-2022-31658 Injection vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability.
network
low complexity
vmware CWE-74
7.2
7.2
2022-08-05 CVE-2022-31659 SQL Injection vulnerability in VMWare products
VMware Workspace ONE Access and Identity Manager contain a remote code execution vulnerability.
network
low complexity
vmware CWE-89
7.2
7.2
2022-08-05 CVE-2022-31660 Unspecified vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contains a privilege escalation vulnerability.
local
low complexity
vmware
7.8
7.8
2022-08-05 CVE-2022-31661 Unspecified vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain two privilege escalation vulnerabilities.
local
low complexity
vmware
7.8
7.8
2022-08-05 CVE-2022-31662 Path Traversal vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager, Connectors and vRealize Automation contain a path traversal vulnerability.
network
low complexity
vmware CWE-22
7.5
7.5
2022-08-05 CVE-2022-31663 Cross-site Scripting vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a reflected cross-site scripting (XSS) vulnerability.
network
low complexity
vmware CWE-79
6.1
6.1
2022-08-05 CVE-2022-31664 Unspecified vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a privilege escalation vulnerability.
local
low complexity
vmware
7.8
7.8
2022-08-05 CVE-2022-31665 Injection vulnerability in VMWare products
VMware Workspace ONE Access, Identity Manager and vRealize Automation contain a remote code execution vulnerability.
network
low complexity
vmware CWE-74
7.2
7.2
2022-07-14 CVE-2022-23825 Exposure of Resource to Wrong Sphere vulnerability in multiple products
Aliases in the branch predictor may cause some AMD processors to predict the wrong branch type potentially leading to information disclosure.
local
low complexity
debian fedoraproject amd vmware CWE-668
6.5
6.5