多款VMware产品安全漏洞

VMware vRealize Automation and others are products of VMware, Inc. vRealize Automation is a management tool that provides self-service, supervised multi-cloud automation. vMware Workspace One Access is a centralized management console that enables you to manage users and groups, set and manage...

The vulnerability of the VMware Workspace ONE Access application management platform, the VMware vRealize Automation virtual infrastructure management tool, the VMware Identity Manager (vIDM) administration consoles, the VMware Cloud Foundation virtualization platform, and the vRealize Suite Lifecycle Manager software for application lifecycle management, is related to deficiencies in the deserialization mechanism, allowing an attacker to execute arbitrary code.

The vulnerabilities of the VMware Workspace ONE Access application management platform, the VMware vRealize Automation virtual infrastructure management tool, the VMware Identity Manager vIDM administration consoles, the VMware Cloud Foundation virtualization platform, and the vRealize Suite...

PT-2022-2185 · Vmware · Vmware Vrealize Automation +4

Name of the Vulnerable Software and Affected Versions: VMware Workspace ONE Access affected versions not specified VMware vRealize Automation affected versions not specified VMware Identity Manager vIDM affected versions not specified VMware Cloud Foundation affected versions not specified vReali...

PT-2022-2187 · Vmware · Vmware Vrealize Automation +4

Name of the Vulnerable Software and Affected Versions: VMware Workspace ONE Access affected versions not specified VMware vRealize Automation affected versions not specified VMware Identity Manager vIDM affected versions not specified VMware Cloud Foundation affected versions not specified vReali...

'/;/WEB-INF/' Information Disclosure Vulnerability (HTTP)

Various application or web servers / products are prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

CVE-2016-5334

VMware Identity Manager 2.x before 2.7.1 and vRealize Automation 7.x before 7.2.0 allow remote attackers to read /SAAS/WEB-INF and /SAAS/META-INF files via unspecified vectors...