Vulnerabilities > Vmware > Workspace ONE Access > 21.08

DATE CVE VULNERABILITY TITLE RISK
2023-05-30 CVE-2023-20884 Open Redirect vulnerability in VMWare products
VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.
network
low complexity
vmware CWE-601
6.1
6.1
2021-12-20 CVE-2021-22056 Server-Side Request Forgery (SSRF) vulnerability in VMWare products
VMware Workspace ONE Access 21.08, 20.10.0.1, and 20.10 and Identity Manager 3.3.5, 3.3.4, and 3.3.3 contain an SSRF vulnerability.
network
low complexity
vmware CWE-918
7.5
7.5
2021-12-20 CVE-2021-22057 Unspecified vulnerability in VMWare Workspace ONE Access
VMware Workspace ONE Access 21.08, 20.10.0.1, and 20.10 contain an authentication bypass vulnerability.
network
low complexity
vmware
8.8
8.8