Overview
VMware have released security updates to address multiple new vulnerabilities in Workspace ONE Access, VMware Workspace ONE Access Connector (Access Connector), Identity Manager (vIDM), VMware Identity Manager Connector (vIDM Connector), vRealize Automation, VMware Cloud Foundation, vRealize operations, and vRealize Lifecycle Manager products.
The critical vulnerability known as CVE-2022-31656 relates to authentication bypass and could allow an attacker with network access to the UI to gain administrative access without the need to authenticate. There are multiple other vulnerabilities of varying levels from important through to moderate. Privilege escalation could allow a local attacker to escalate privileges to root.
An attacker could use these vulnerabilities either separately or together to take control of an affected system.
Recommended Action
- Affected organisations are required to review VMware's security advisories below
- Vulnerable VMware products should be updated to the latest version; there are patches available that remediate these vulnerabilities.
VMSA-2022-0021: Questions & Answers
If you have any concerns, or have been affected by a cyber-related issue, report it to us by submitting a Cyber Concerns Online Reporting Form.