Vulnerabilities for Workspace one unified endpoint management (...) - CXSECURITY.COM

Vulnerabilities for
'Workspace one unified endpoint management'

2021-05-11

CVE-2021-21990

CWE-79

VMware Workspace one UEM console (2102 prior to 21.2.0.8, 2101 prior to 21.1.0.14, 2011 prior to 20.11.0.27, 2010 prior to 20.10.0.16,2008 prior to 20.8.0.28, 2007 prior to 20.7.0.14,2006 prior to 20.6.0.19, 2005 prior to 20.5.0.46, 2004 prior to 20.4.0.21, 2003 prior to 20.3.0.23, 2001 prior to 20.1.0.32, 1912 prior to 19.12.0.24) contain a cross-site scripting vulnerability. VMware Workspace ONE UEM console does not validate incoming requests during device enrollment after leading to rendering of unsanitized input on the user device in response.

>>> Vendor: Vmware 132 Products

Vmware workstation

Vmware player 2

Vmware virtualcenter

Vcenter lab manager

Vcenter stage manager

Springsource spring security

Virtual infrastructure client

Springsource spring framework

Vcenter update manager

Vcenter chargeback manager

Vcenter orchestrator

Vshield manager

Vcenter operations

Vcenter server appliance

Vcloud director

Vcloud networking and security

Vcloud automation center

Vsphere data protection

Horizon view client

Vrealize orchestrator

Vrealize business

Vrealize automation

Vcloud automation identity appliance

Vrealize log insight

Vcloud networking and security edge

Workstation player

Workstation pro

Identity manger

Vrealize operations

Unified access gateway

Intelligent hub

Workspace one boxer

Workspace one content

Workspace one intelligent hub

Workspace one notebook

Workspace one people

Workspace one piv-d manager

Workspace one sdk

Workspace one sdk \(objective-c\)

Workspace one web

Spring cloud config

Tanzu application service for vms

Cloud foundation

See all Products for Vendor Vmware

Copyright 2024, cxsecurity.com