Information Disclosure Vulnerability in VMware Workspace ONE Access, Identity Manager, and vRealize Automation: Exposing Hostname

Information Disclosure Vulnerability in VMware Workspace ONE Access, Identity Manager, and vRealize Automation: Exposing Hostname

CVE-2022-22961 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

VMware Workspace ONE Access, Identity Manager and vRealize Automation contain an information disclosure vulnerability due to returning excess information. A malicious actor with remote access may leak the hostname of the target system. Successful exploitation of this issue can lead to targeting victims.

Learn more about our Cis Benchmark Audit For Google Workspace.