VMWare Workspace One has "critical" security vulnerability – TechRadar

VMWare has released a temporary fix for a critical zero-day vulnerability affecting several of its products, including VMWare Workspace One. The bug allows threat actors to take control of Linux and Windows operating systems by escalating their privileges remotely.

The command injection vulnerability, tracked as CVE-2020-4006, has been found in the administrative configuration of some versions of VMWare Workspace One, as well as in VMWare’s Access Connector, Identity Manager, and Identity Manager Connector. The vulnerability has been given a 9.1 CVSSv3 severity rating out of 10.


Leave a Reply

This website uses cookies. By continuing to use this site, you accept our use of cookies.