CVE-2022-31700 - VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vuln

CVE-2022-31700

Summary

VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2.

References

https://www.vmware.com/security/advisories/VMSA-2022-0032.html

Vulnerable Configurations

cpe:2.3:a:vmware:cloud_foundation:-:*:*:*:*:*:*:*
cpe:2.3:a:vmware:cloud_foundation:-:*:*:*:*:*:*:*
cpe:2.3:a:vmware:access:21.08.0.1:*:*:*:*:linux:*:*
cpe:2.3:a:vmware:access:21.08.0.1:*:*:*:*:linux:*:*
cpe:2.3:a:vmware:access:21.08.0.0:*:*:*:*:linux:*:*
cpe:2.3:a:vmware:access:21.08.0.0:*:*:*:*:linux:*:*
cpe:2.3:a:vmware:identity_manager:3.3.6:*:*:*:*:*:*:*
cpe:2.3:a:vmware:identity_manager:3.3.6:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

CVSS

Base:	None
Impact:
Exploitability:

CWE

NVD-CWE-noinfo

CAPEC

Access

Vector	Complexity	Authentication

Impact

Confidentiality	Integrity	Availability

Last major update

20-12-2022 - 14:37

Published

14-12-2022 - 19:15

Last modified

20-12-2022 - 14:37