VMware released an urgent, high-priority patch on Tuesday to address an authentication bypass vulnerability in its Workspace ONE Access, Identity Manager, and vRealize Automation products.
According to a company advisory, the vulnerability has VMware’s highest severity rating (CVSSv3 base score of 9.8) and needs to be fixed right away. PetrusViet found and reported the authentication bypass vulnerability, tracked as CVE-2022-31656 (a member of VNG Security).
VMware acknowledged this flaw as a variant of a previously patched problem (VMSA-2022-0014) for which there is publicly available exploit code, the company claimed it was unaware of in-the-wild exploitation.
For more such updates follow us on Google News ITsecuritywire News