Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
thnThe Hacker NewsTHN:4AD35E3CAEEAC9B89996F97FCB0D6F59
HistoryNov 09, 2022 - 6:04 a.m.

VMware Warns of 3 New Critical Flaws Affecting Workspace ONE Assist Software

2022-11-0906:04:00
The Hacker News
thehackernews.com
36
vmware
workspace one assist
critical flaws
authentication
elevated permissions
cve-2022-31685
cve-2022-31686
cve-2022-31687
xss
session fixation
security advisory
version 22.10

0.002 Low

EPSS

Percentile

56.6%

JSON

VMware

VMware has patched five security flaws affecting its Workspace ONE Assist solution, some of which could be exploited to bypass authentication and obtain elevated permissions.

Topping the list are three critical vulnerabilities tracked as CVE-2022-31685, CVE-2022-31686, and CVE-2022-31687. All the shortcomings are rated 9.8 on the CVSS vulnerability scoring system.

CVE-2022-31685 is an authentication bypass flaw that could be abused by an attacker with network access to VMware Workspace ONE Assist to obtain administrative access without the need to authenticate to the application.

CVE-2022-31686 has been described by the virtualization services provider as a “broken authentication method” vulnerability, and CVE-2022-31687 as a “Broken Access Control” flaw.

“A malicious actor with network access may be able to obtain administrative access without the need to authenticate to the application,” VMware said in an advisory for CVE-2022-31686 and CVE-2022-31687.

Another vulnerability is a case of a reflected cross-site scripting (XSS) vulnerability (CVE-2022-31688, CVSS score: 6.4) stemming from improper user input sanitization, something that could be exploited to inject arbitrary JavaScript code in the target user’s window.

Rounding off the patch is a session fixation vulnerability (CVE-2022-31689, CVSS score: 4.2) that VMware said is the result of improper handling of session tokens, adding “a malicious actor who obtains a valid session token may be able to authenticate to the application using that token.”

Security researchers Jasper Westerman, Jan van der Put, Yanick de Pater, and Harm Blankers of Netherlands-based Reqon have been credited with discovering and reporting the flaws.

All the issues impact versions 21.x and 22.x of VMware Workspace ONE Assist and have been fixed in version 22.10. The company also said there are no workarounds that address the weaknesses.

Found this article interesting? Follow THN on Facebook, Twitter and LinkedIn to read more exclusive content we post.

Related

vmware 1
nessus 1
hivepro 1
prion 5
cve 5
nvd 5
cvelist 5
vmware
vmware
VMware Workspace ONE Assist update addresses multiple vulnerabilities.
2022-11-08 00:00:00
nessus
nessus
VMware Workspace One Assist Multiple Vulnerabilities (VMSA-2022-0028)
2022-11-16 00:00:00
hivepro
hivepro
Authentication Bypass Vulnerabilities in VMware Workspace ONE Assist
2022-11-10 10:08:26
prion
prion
Cross site scripting
2022-11-09 21:15:00
Session fixation
2022-11-09 21:15:00
Improper access control
2022-11-09 21:15:00
cve
cve
CVE-2022-31686
2022-11-09 21:15:15
CVE-2022-31687
2022-11-09 21:15:15
CVE-2022-31685
2022-11-09 21:15:15
nvd
nvd
CVE-2022-31689
2022-11-09 21:15:15
CVE-2022-31686
2022-11-09 21:15:15
CVE-2022-31688
2022-11-09 21:15:15
cvelist
cvelist
CVE-2022-31686
2022-11-09 00:00:00
CVE-2022-31687
2022-11-09 00:00:00
CVE-2022-31685
2022-11-09 00:00:00

0.002 Low

EPSS

Percentile

56.6%

JSON
Related for THN:4AD35E3CAEEAC9B89996F97FCB0D6F59
vmware1nessus1hivepro1prion5cve5nvd5cvelist5