Vmware: >> Workspace One Access >> 21.08.01 Security Vulnerabilities
VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.
CVSS Score
6.1
EPSS Score
0.003
Published
2023-05-30
VMware Workspace ONE Access 21.08, 20.10.0.1, and 20.10 and Identity Manager 3.3.5, 3.3.4, and 3.3.3 contain an SSRF vulnerability. A malicious actor with network access may be able to make HTTP requests to arbitrary origins and read the full response.
CVSS Score
7.5
EPSS Score
0.008
Published
2021-12-20