Lucene search

VMwareVMSA-2021-0008

HistoryMay 11, 2021 - 12:00 a.m.

VMware Workspace ONE UEM console patches address a cross-site scripting vulnerability (CVE-2021-21990)

2021-05-1100:00:00

www.vmware.com

0.001 Low

EPSS

Percentile

44.8%

JSON

3. Cross Site Scripting (XSS) vulnerability in VMware Workspace ONE UEM console (CVE-2021-21990)

VMware Workspace ONE UEM console does not validate an incoming request during device enrollment.VMware has evaluated the severity of this issue to be in the low severity range with a maximum CVSSv3 base score of 3.7.

CPENameOperatorVersion
vmware workspace one uem consolelt19.12.0.24
vmware workspace one uem consolelt20.1.0.32
vmware workspace one uem consolelt20.3.0.23
vmware workspace one uem consolelt20.4.0.21
vmware workspace one uem consolelt20.5.0.46
vmware workspace one uem consolelt20.6.0.19
vmware workspace one uem consolelt20.7.0.14
vmware workspace one uem consolelt20.8.0.28
vmware workspace one uem consolelt20.10.0.16
vmware workspace one uem consolelt20.11.0.27

Name	Operator	Version
vmware workspace one uem console	lt	19.12.0.24
vmware workspace one uem console	lt	20.1.0.32
vmware workspace one uem console	lt	20.3.0.23
vmware workspace one uem console	lt	20.4.0.21
vmware workspace one uem console	lt	20.5.0.46
vmware workspace one uem console	lt	20.6.0.19
vmware workspace one uem console	lt	20.7.0.14
vmware workspace one uem console	lt	20.8.0.28
vmware workspace one uem console	lt	20.10.0.16
vmware workspace one uem console	lt	20.11.0.27

Rows per page:

1-10 of 121

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21990

docs.vmware.com/en/VMware-Workspace-ONE-UEM/1912/rn/VMware

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2001/rn/VMware-Workspace-ONE-UEM-Release-Notes-2001.html#20-1-0-32-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2003/rn/VMware-Workspace-ONE-UEM-Release-Notes-2003.html#20-3-0-23-patch-resolved-issue-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2004/rn/VMware-Workspace-ONE-UEM-Release-Notes-2004.html#20-4-0-21-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2005/rn/VMware-Workspace-ONE-UEM-Release-Notes-2005.html#20-5-0-46-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2006/rn/VMware-Workspace-ONE-UEM-Release-Notes-2006.html#20-6-0-19-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2007/rn/VMware-Workspace-ONE-UEM-Release-Notes-2007.html#20-7-0-14-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2008/rn/VMware-Workspace-ONE-UEM-Release-Notes-2008.html#20-8-0-28-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2010/rn/VMware-Workspace-ONE-UEM-Release-Notes-2010.html#20-10-0-16-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2011/rn/VMware-Workspace-ONE-UEM-Release-Notes-2011.html#20-11-0-27-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2101/rn/Workspace-ONE-UEM-2101-Release-Notes.html#21-1-0-14-patch-resolved-issues-resolved

docs.vmware.com/en/VMware-Workspace-ONE-UEM/2102/rn/Workspace-ONE-UEM-2102-Release-Notes.html#21-2-0-8-patch-resolved-issues-resolved

resources.workspaceone.com/view/3s4wvw2b3wp5mfs3y8s7/en

resources.workspaceone.com/view/48ktw9p6spmq8dflll49/en

resources.workspaceone.com/view/5qtfg6xhrkcp6vp4t4l7/en

resources.workspaceone.com/view/pdwkjgfsb8b57cxvfnpd/en

resources.workspaceone.com/view/zmbk3nnwjhfr8jhkhyjc/en

www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N

0.001 Low

EPSS

Percentile

44.8%

JSON

Related for VMSA-2021-0008