VMware patches critical auth bypass flaw in multiple products


Bruno L�pez of Innotec Security discovered the weakness (recorded as CVE-2022-22972) and discovered that it affects Workspace ONE Access, VMware Identity Manager (vIDM), and vRealize Automation.

Customers were notified today that a major authentication bypass issue “affecting local domain users” in numerous VMware products may be exploited to gain admin rights. Read More…