Advertisement
Top
image credit: Adobe Stock

VMware fixes three critical flaws in Workspace ONE Assist

November 9, 2022

Via: Security Affairs
Category:

Workspace ONE Assist allows IT staff to remotely access and troubleshoot devices in real time from the Workspace ONE console.

The first issue, tracked as CVE-2022-31685 (CVSSv3 9.8/10), is an authentication bypass flaw, an attacker with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.
The second issue, tracked as CVE-2022-31686 (CVSSv3 9.8/10), is a broken authentication method, an attacker with network access may be able to obtain administrative access without the need to authenticate to the application.

Read More on Security Affairs

RELATED PUBLICATIONS

Broadcom builds a better SASE out of VMware VeloCloud and Symantec
Patch now: Critical VMware, Atlassian flaws found
While we fire the boss, can you lock him out of the network?

Latest Publications

AI set to play key role in future phishing attacks
U.S. Gov imposed Visa restrictions on 13 individuals linked to commercial spyware activity
5 Hard Truths About the State of Cloud Security 2024
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!