CVE-2020-4006CISA KEV: Actively Exploited

Multiple VMware Products Command Injection Vulnerability

Published Nov 3, 2021·Updated Nov 3, 2021

Description

VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector contain a command injection vulnerability. An attacker with network access to the administrative configurator on port 8443 and a valid password for the configurator administrator account can execute commands with unrestricted privileges on the underlying operating system.

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free