CVE-2021-22054
17.12.2021, 17:15
VMware Workspace ONE UEM console 20.0.8 prior to 20.0.8.37, 20.11.0 prior to 20.11.0.40, 21.2.0 prior to 21.2.0.27, and 21.5.0 prior to 21.5.0.37 contain an SSRF vulnerability. This issue may allow a malicious actor with network access to UEM to send their requests without authentication and to gain access to sensitive information.
| Vendor | Product | Version |
|---|---|---|
| vmware | workspace_one_uem_console | 20.0.8.0 ≤ 𝑥 < 20.0.8.36 |
| vmware | workspace_one_uem_console | 20.11.0.0 ≤ 𝑥 < 20.11.0.40 |
| vmware | workspace_one_uem_console | 21.2.0.0 ≤ 𝑥 < 21.2.0.27 |
| vmware | workspace_one_uem_console | 21.5.0.0 ≤ 𝑥 < 21.5.0.37 |
𝑥
= Vulnerable software versions