VMware Workspace One Assist
By the Year
In 2024 there have been 0 vulnerabilities in VMware Workspace One Assist . Workspace One Assist did not have any published security vulnerabilities last year.
| Year | Vulnerabilities | Average Score |
|---|---|---|
| 2024 | 0 | 0.00 |
| 2023 | 0 | 0.00 |
| 2022 | 5 | 9.06 |
| 2021 | 0 | 0.00 |
| 2020 | 0 | 0.00 |
| 2019 | 0 | 0.00 |
| 2018 | 0 | 0.00 |
It may take a day or so for new Workspace One Assist vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent VMware Workspace One Assist Security Vulnerabilities
VMware Workspace ONE Assist prior to 22.10 contains a Session fixation vulnerability
CVE-2022-31689
9.8 - Critical
- November 09, 2022
VMware Workspace ONE Assist prior to 22.10 contains a Session fixation vulnerability. A malicious actor who obtains a valid session token may be able to authenticate to the application using that token.
Session Fixation
VMware Workspace ONE Assist prior to 22.10 contains a Reflected cross-site scripting (XSS) vulnerability
CVE-2022-31688
6.1 - Medium
- November 09, 2022
VMware Workspace ONE Assist prior to 22.10 contains a Reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript code in the target user's window.
XSS
VMware Workspace ONE Assist prior to 22.10 contains a Broken Access Control vulnerability
CVE-2022-31687
9.8 - Critical
- November 09, 2022
VMware Workspace ONE Assist prior to 22.10 contains a Broken Access Control vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.
VMware Workspace ONE Assist prior to 22.10 contains a Broken Authentication Method vulnerability
CVE-2022-31686
9.8 - Critical
- November 09, 2022
VMware Workspace ONE Assist prior to 22.10 contains a Broken Authentication Method vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.
VMware Workspace ONE Assist prior to 22.10 contains an Authentication Bypass vulnerability
CVE-2022-31685
9.8 - Critical
- November 09, 2022
VMware Workspace ONE Assist prior to 22.10 contains an Authentication Bypass vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for VMware Workspace One Assist or by VMware? Click the Watch button to subscribe.
