logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-31656

Description

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an authentication bypass vulnerability affecting local domain users. A malicious actor with network access to the UI may be able to obtain administrative access without the need to authenticate.


Affected Software


CPE Name Name Version
vmware:identity_manager vmware identity manager 3.3.4
vmware:identity_manager vmware identity manager 3.3.5
vmware:identity_manager vmware identity manager 3.3.6
vmware:one_access vmware one access 21.08.0.1
vmware:one_access vmware one access 21.08.0.0
vmware:identity_manager_connector vmware identity manager connector 3.3.4
vmware:identity_manager_connector vmware identity manager connector 3.3.5
vmware:identity_manager_connector vmware identity manager connector 3.3.6
vmware:identity_manager_connector vmware identity manager connector 19.03.0.1
vmware:access_connector vmware access connector 21.08.0.1
vmware:access_connector vmware access connector 21.08.0.0
vmware:access_connector vmware access connector 22.05

Related