VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an information disclosure vulnerability due to returning excess information. A malicious actor with remote access may leak the hostname of the target system. Successful exploitation of this issue can lead to targeting victims.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware cloud foundation |
||
vmware identity manager 3.3.3 |
||
vmware identity manager 3.3.4 |
||
vmware identity manager 3.3.5 |
||
vmware identity manager 3.3.6 |
||
vmware vrealize automation |
||
vmware vrealize automation 7.6 |
||
vmware vrealize suite lifecycle manager |
||
vmware workspace one access 20.10.0.0 |
||
vmware workspace one access 20.10.0.1 |
||
vmware workspace one access 21.08.0.0 |
||
vmware workspace one access 21.08.0.1 |