VMware Workspace ONE Access 21.08, 20.10.0.1, and 20.10 and Identity Manager 3.3.5, 3.3.4, and 3.3.3 contain an SSRF vulnerability. A malicious actor with network access may be able to make HTTP requests to arbitrary origins and read the full response.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware identity_manager 3.3.3 |
||
vmware identity_manager 3.3.4 |
||
vmware identity_manager 3.3.5 |
||
vmware vrealize_automation 7.6 |
||
vmware vrealize_automation |
||
vmware workspace_one_access 20.10 |
||
vmware workspace_one_access 20.10.01 |
||
vmware workspace_one_access 21.08 |
||
vmware workspace_one_access 21.08.01 |