Lucene search

PRIOn knowledge basePRION:CVE-2022-31687

HistoryNov 09, 2022 - 9:15 p.m.

Improper access control

2022-11-0921:15:00

PRIOn knowledge base

www.prio-n.com

vmware

workspace one

assist

access control

vulnerability

network access

administrative access

9.2 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

56.6%

JSON

VMware Workspace ONE Assist prior to 22.10 contains a Broken Access Control vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.

CPENameOperatorVersion
workspace_one_assistlt22.10

CPE	Name	Operator	Version
	workspace_one_assist	lt	22.10

References

www.vmware.com/security/advisories/VMSA-2022-0028.html