CVE-2022-22955
N/A
N/A
Summary
VMware Workspace ONE Access has two authentication bypass vulnerabilities (CVE-2022-22955 & CVE-2022-22956) in the OAuth2 ACS framework. A malicious actor may bypass the authentication mechanism and execute any operation due to exposed endpoints in the authentication framework.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | VMware Workspace ONE Access | Access 21.08.0.1, 21.08.0.0, 20.10.0.1, 20.10.0.0. | affected |
Weaknesses
- Authentication bypass
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.