3a. Host header tampering leading to server side request on internal restricted service (CVE-2021-22002)
VMware Workspace ONE Access and Identity Manager, allow the /cfg web app and diagnostic endpoints, on port 8443, to be accessed via port 443 using a custom host header. VMware has evaluated this issue to be of ‘Important’ severity with a maximum CVSSv3 base score of 8.6.
3b. Information Disclosure Vulnerability (CVE-2021-22003)
VMware Workspace ONE Access and Identity Manager, unintentionally provide a login interface on port 7443. VMware has evaluated this issue to be of ‘Low’ severity with a maximum CVSSv3 base score of 3.7.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22002
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-22003
kb.vmware.com/s/article/70911
kb.vmware.com/s/article/85254
kb.vmware.com/s/article/85255
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
www.first.org/cvss/calculator/3.0#CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L