Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-31700

VMware Workspace ONE Access and Identity Manager contain an authenticated remote code execution vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.2.

Published

2022-12-14T19:15:12.860

Last Modified

2025-04-22T16:15:29.917

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	vmware	access	21.08.0.0	Yes
Application	vmware	access	21.08.0.1	Yes
Application	vmware	cloud_foundation	-	Yes
Application	vmware	identity_manager	3.3.6	Yes
Operating System	microsoft	windows	-	No

References

https://www.vmware.com/security/advisories/VMSA-2022-0032.html Vendor Advisory ([email protected])
https://www.vmware.com/security/advisories/VMSA-2022-0032.html Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)