VMware released a patch to address multiple flaws in its products, including a critical issue that could allow an attacker to access confidential information. A couple of vulnerabilities tracked as CVE-2021-22002 and CVE-2021-22003, impact Workspace One Access (Access), Identity Manager (vIDM), vRealize Automation (vRA), Cloud Foundation, and vRealize Suite Lifecycle Manager. CVE-2021-22002 is related to VMware Workspace One Access and Identity Manager, which allows the /cfg web app and diagnostic endpoints via port 443 by using a custom host header. VMware has labeled CVE-2021-22002 as a CVSS base score of 8.6. If a threat actor had access to port 443 they could tamper with the host headers to gain access to /cfg web app and /cfg diagnostic endpoints without authentication.
CVE-2021-22003 is an Information Disclosure Vulnerabilityflaw that resides in the VMware Workspace One Access and Identity Management. Both solutions unintentionally provide a login interface on port 7443,which an attacker could exploit to enumerate the users or conduct a brute force attack on the endpoint. CVE-2021-22003 has been given a CVSS base score of 3.7.
Anyone using VMware products that are subject to these attacks should look into applying the patch as soon as they can. VMware provided a workaround for CVE-2021-22002, which can be found here: https://kb.vmware.com/s/article/85255. Companies should stay up to date on all patches/updates that are released for any solution they are utilizing within their environment. These should be implemented as soon as they can to make sure they cannot be exploited by threat actors in the future. Oftentimes, attackers will wait to use vulnerabilities until they are older to attack companies that failed to apply the patches.
More can be read here: https://securityaffairs.co/wordpress/120870/security/vmware-critical-vulnerabilities.html?utm_source=feedly&utm_medium=rss&utm_campaign=vmware-critical-vulnerabilities