554 matches found
Announcing the VMware vExpert Security Program!
We’re excited to share that the VMware Security Products Team and Carbon Black is announcing a new Security vExperts program. If you’re not familiar with vExperts, the program is designed to recognize individuals who are passionate about sharing their knowledge of VMware technologies with the...
CVE-2020-3940
VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability...
CVE-2020-3940
VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability...
Information disclosure
VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability...
CVE-2020-3940
CVE-2020-3940 affects VMware Workspace ONE SDK and dependent mobile applications. The root cause is improper handling of certificate verification failures when SSL Pinning is enabled, leading to a potential information disclosure. The CVSSv3.1 base score is 5.9 (confidentiality impact HIGH, no in...
CVE-2020-3940
VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability...
VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability (CVE-2020-3940)
3. VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability CVE-2020-3940 VMware Workspace ONE SDK and dependent mobile applications do not properly handle certificate verification failures if SSL Pinning has been enabled in the...
CVE-2018-6979
The CVE-2018-6979 issue affects VMware Workspace ONE Unified Endpoint Management Console (AirWatch Console) and VMware AirWatch/Workspace ONE versions from 9.1.x up to 9.7.x prior to fixed releases. The root cause is a SAML authentication bypass during device enrollment, which can allow impersona...
CVE-2018-6979
The VMware Workspace ONE Unified Endpoint Management Console A/W Console 9.7.x prior to 9.7.0.3, 9.6.x prior to 9.6.0.7, 9.5.x prior to 9.5.0.16, 9.4.x prior to 9.4.0.22, 9.3.x prior to 9.3.0.25, 9.2.x prior to 9.2.3.27, and 9.1.x prior to 9.1.5.6 contains a SAML authentication bypass vulnerabili...
Authentication flaw
The VMware Workspace ONE Unified Endpoint Management Console A/W Console 9.7.x prior to 9.7.0.3, 9.6.x prior to 9.6.0.7, 9.5.x prior to 9.5.0.16, 9.4.x prior to 9.4.0.22, 9.3.x prior to 9.3.0.25, 9.2.x prior to 9.2.3.27, and 9.1.x prior to 9.1.5.6 contains a SAML authentication bypass vulnerabili...
CVE-2018-6979
The VMware Workspace ONE Unified Endpoint Management Console A/W Console 9.7.x prior to 9.7.0.3, 9.6.x prior to 9.6.0.7, 9.5.x prior to 9.5.0.16, 9.4.x prior to 9.4.0.22, 9.3.x prior to 9.3.0.25, 9.2.x prior to 9.2.3.27, and 9.1.x prior to 9.1.5.6 contains a SAML authentication bypass vulnerabili...
VMware Workspace ONE Unified Endpoint Management Console (AirWatch Console) update resolves SAML authentication bypass vulnerability
The VMware Workspace ONE Unified Endpoint Management Console AirWatch Console contains a SAML authentication bypass vulnerability which can be leveraged during device enrollment. This vulnerability may allow for a malicious actor to impersonate an authorized SAML session if certificate-based...
VMware Workspace ONE Unified Endpoint Management Console (AirWatch Console) updates resolve SAML authentication bypass vulnerability
The VMware Workspace ONE Unified Endpoint Management Console AirWatch Console contains a SAML authentication bypass vulnerability which can be leveraged during device enrollment. This vulnerability may allow for a malicious actor to impersonate an authorized SAML session if certificate-based...
Carbon Black Strengthens Relationship with VMware, Supports Workspace ONE Trust Network
As organizations continue to move toward digital transformation, the digital workspace ecosystem of users, apps, endpoints, and networks continues to grow and evolve beyond the traditional perimeter. While the traditional perimeter dissolves, cyber threats evolve and new ones emerge. Security...