cvelist/2024/22xxx/CVE-2024-22260.json

{
    "data_version": "4.0",
    "data_type": "CVE",
    "data_format": "MITRE",
    "CVE_data_meta": {
        "ID": "CVE-2024-22260",
        "ASSIGNER": "security@vmware.com",
        "STATE": "PUBLIC"
    },
    "description": {
        "description_data": [
            {
                "lang": "eng",
                "value": "VMware Workspace One UEM update addresses an information exposure vulnerability.\u00a0\nA malicious actor with network access to the Workspace One UEM may be \nable to perform an attack resulting in an information exposure."
            }
        ]
    },
    "problemtype": {
        "problemtype_data": [
            {
                "description": [
                    {
                        "lang": "eng",
                        "value": "Information exposure vulnerability"
                    }
                ]
            }
        ]
    },
    "affects": {
        "vendor": {
            "vendor_data": [
                {
                    "vendor_name": "N/A",
                    "product": {
                        "product_data": [
                            {
                                "product_name": "VMware Workspace One UEM",
                                "version": {
                                    "version_data": [
                                        {
                                            "version_affected": "=",
                                            "version_value": "VMware Workspace One UEM 23.10.x, VMware Workspace One UEM 23.6.x, VMware Workspace One UEM 23.4.x, VMware Workspace One UEM 22.12.x"
                                        }
                                    ]
                                }
                            }
                        ]
                    }
                }
            ]
        }
    },
    "references": {
        "reference_data": [
            {
                "url": "https://www.vmware.com/security/advisories/OMSA-2024-0001.html",
                "refsource": "MISC",
                "name": "https://www.vmware.com/security/advisories/OMSA-2024-0001.html"
            }
        ]
    },
    "generator": {
        "engine": "Vulnogram 0.2.0"
    },
    "source": {
        "discovery": "UNKNOWN"
    },
    "impact": {
        "cvss": [
            {
                "attackComplexity": "HIGH",
                "attackVector": "NETWORK",
                "availabilityImpact": "NONE",
                "baseScore": 6.8,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "NONE",
                "scope": "UNCHANGED",
                "userInteraction": "REQUIRED",
                "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
                "version": "3.1"
            }
        ]
    }
}
"-Synchronized-Data." 2024-01-08 19:00:37 +00:00			`{`
"-Synchronized-Data." 2024-06-27 21:00:34 +00:00			`"data_version": "4.0",`
"-Synchronized-Data." 2024-01-08 19:00:37 +00:00			`"data_type": "CVE",`
			`"data_format": "MITRE",`
			`"CVE_data_meta": {`
			`"ID": "CVE-2024-22260",`
"-Synchronized-Data." 2024-06-27 21:00:34 +00:00			`"ASSIGNER": "security@vmware.com",`
			`"STATE": "PUBLIC"`
"-Synchronized-Data." 2024-01-08 19:00:37 +00:00			`},`
			`"description": {`
			`"description_data": [`
			`{`
			`"lang": "eng",`
"-Synchronized-Data." 2024-06-27 21:00:34 +00:00			`"value": "VMware Workspace One UEM update addresses an information exposure vulnerability.\u00a0\nA malicious actor with network access to the Workspace One UEM may be \nable to perform an attack resulting in an information exposure."`
			`}`
			`]`
			`},`
			`"problemtype": {`
			`"problemtype_data": [`
			`{`
			`"description": [`
			`{`
			`"lang": "eng",`
			`"value": "Information exposure vulnerability"`
			`}`
			`]`
			`}`
			`]`
			`},`
			`"affects": {`
			`"vendor": {`
			`"vendor_data": [`
			`{`
			`"vendor_name": "N/A",`
			`"product": {`
			`"product_data": [`
			`{`
			`"product_name": "VMware Workspace One UEM",`
			`"version": {`
			`"version_data": [`
			`{`
			`"version_affected": "=",`
			`"version_value": "VMware Workspace One UEM 23.10.x, VMware Workspace One UEM 23.6.x, VMware Workspace One UEM 23.4.x, VMware Workspace One UEM 22.12.x"`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`}`
			`]`
			`}`
			`},`
			`"references": {`
			`"reference_data": [`
			`{`
			`"url": "https://www.vmware.com/security/advisories/OMSA-2024-0001.html",`
			`"refsource": "MISC",`
			`"name": "https://www.vmware.com/security/advisories/OMSA-2024-0001.html"`
			`}`
			`]`
			`},`
			`"generator": {`
			`"engine": "Vulnogram 0.2.0"`
			`},`
			`"source": {`
			`"discovery": "UNKNOWN"`
			`},`
			`"impact": {`
			`"cvss": [`
			`{`
			`"attackComplexity": "HIGH",`
			`"attackVector": "NETWORK",`
			`"availabilityImpact": "NONE",`
			`"baseScore": 6.8,`
			`"baseSeverity": "MEDIUM",`
			`"confidentialityImpact": "HIGH",`
			`"integrityImpact": "HIGH",`
			`"privilegesRequired": "NONE",`
			`"scope": "UNCHANGED",`
			`"userInteraction": "REQUIRED",`
			`"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",`
			`"version": "3.1"`
"-Synchronized-Data." 2024-01-08 19:00:37 +00:00			`}`
			`]`
			`}`
			`}`