VMware Workspace ONE Access and Identity Manager, allow the /cfg web app and diagnostic endpoints, on port 8443, to be accessed via port 443 using a custom host header. A malicious actor with network access to port 443 could tamper with host headers to facilitate access to the /cfg web app, in addition a malicious actor could access /cfg diagnostic endpoints without authentication.
2021-08-31T22:15:08.320
2024-11-21T05:49:25.223
Modified
CVSSv3.1: 9.8 (CRITICAL)
AV:N/AC:L/Au:N/C:P/I:P/A:P
10.0
6.4
| Type | Vendor | Product | Version/Range | Vulnerable? |
|---|---|---|---|---|
| Application | vmware | identity_manager | 3.3.2 | Yes |
| Application | vmware | identity_manager | 3.3.3 | Yes |
| Application | vmware | identity_manager | 3.3.4 | Yes |
| Application | vmware | identity_manager | 3.3.5 | Yes |
| Application | vmware | workspace_one_access | 20.01 | Yes |
| Application | vmware | workspace_one_access | 20.10 | Yes |
| Application | vmware | workspace_one_access | 20.10.01 | Yes |
| Operating System | linux | linux_kernel | - | No |
| Application | vmware | cloud_foundation | 4.0 | Yes |
| Application | vmware | cloud_foundation | 4.0.1 | Yes |
| Application | vmware | cloud_foundation | 4.1 | Yes |
| Application | vmware | cloud_foundation | 4.1.0.1 | Yes |
| Application | vmware | cloud_foundation | 4.2.1 | Yes |
| Application | vmware | vrealize_suite_lifecycle_manager | 8.0 | Yes |
| Application | vmware | vrealize_suite_lifecycle_manager | 8.0.1 | Yes |
| Application | vmware | vrealize_suite_lifecycle_manager | 8.1 | Yes |
| Application | vmware | vrealize_suite_lifecycle_manager | 8.2 | Yes |