Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vmware workspace one vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-3940
VMware Workspace ONE SDK and dependent mobile application updates address sensitive information disclosure vulnerability.
Vmware Workspace One Boxer
Vmware Workspace One Content
Vmware Workspace One Intelligent Hub
Vmware Workspace One Notebook
Vmware Workspace One People
Vmware Workspace One Piv-d Manager
Vmware Workspace One Sdk
Vmware Workspace One Sdk \\(objective-c\\)
Vmware Workspace One Web
445
VMScore
CVE-2018-6976
The VMware Content Locker for iOS before 4.14 contains a data protection vulnerability in the SQLite database. This vulnerability relates to unencrypted filenames and associated metadata in SQLite database for the Content Locker.
Vmware Workspace One
NA
CVE-2023-20886
VMware Workspace ONE UEM console contains an open redirect vulnerability. A malicious actor may be able to redirect a victim to an attacker and retrieve their SAML response to login as the victim user.
Vmware Workspace One Uem
NA
CVE-2022-31686
VMware Workspace ONE Assist before 22.10 contains a Broken Authentication Method vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.
Vmware Workspace One Assist
1 Article
NA
CVE-2022-31688
VMware Workspace ONE Assist before 22.10 contains a Reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript code in the target user's window.
Vmware Workspace One Assist
1 Article
NA
CVE-2023-20857
VMware Workspace ONE Content contains a passcode bypass vulnerability. A malicious actor, with access to a users rooted device, may be able to bypass the VMware Workspace ONE Content passcode.
Vmware Workspace One Content
NA
CVE-2022-31687
VMware Workspace ONE Assist before 22.10 contains a Broken Access Control vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.
Vmware Workspace One Assist
1 Article
312
VMScore
CVE-2022-22944
VMware Workspace ONE Boxer contains a stored cross-site scripting (XSS) vulnerability. Due to insufficient sanitization and validation, in VMware Workspace ONE Boxer calendar event descriptions, a malicious actor can inject script tags to execute arbitrary script within a user...
Vmware Workspace One Boxer
NA
CVE-2022-31685
VMware Workspace ONE Assist before 22.10 contains an Authentication Bypass vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.
Vmware Workspace One Assist
1 Article
NA
CVE-2022-31689
VMware Workspace ONE Assist before 22.10 contains a Session fixation vulnerability. A malicious actor who obtains a valid session token may be able to authenticate to the application using that token.
Vmware Workspace One Assist
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »