logo
DATABASE RESOURCES PRICING ABOUT US

CVE-2022-31657

Description

VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability. A malicious actor with network access may be able to redirect an authenticated user to an arbitrary domain.


Affected Software


CPE Name Name Version
vmware:identity_manager vmware identity manager 3.3.4
vmware:identity_manager vmware identity manager 3.3.5
vmware:identity_manager vmware identity manager 3.3.6
vmware:one_access vmware one access 21.08.0.1
vmware:one_access vmware one access 21.08.0.0
vmware:identity_manager_connector vmware identity manager connector 3.3.4
vmware:identity_manager_connector vmware identity manager connector 3.3.5
vmware:identity_manager_connector vmware identity manager connector 3.3.6
vmware:identity_manager_connector vmware identity manager connector 19.03.0.1
vmware:access_connector vmware access connector 21.08.0.1
vmware:access_connector vmware access connector 21.08.0.0
vmware:access_connector vmware access connector 22.05

Related