cve,link,title,description,vendor,products,score,severity,epss,cisa,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2022-31689,https://securityvulnerability.io/vulnerability/CVE-2022-31689,,VMware Workspace ONE Assist prior to 22.10 contains a Session fixation vulnerability. A malicious actor who obtains a valid session token may be able to authenticate to the application using that token.,Vmware,Vmware Workspace One Assist,9.8,CRITICAL,0.002139999996870756,false,false,false,false,,false,false,2022-11-09T00:00:00.000Z,0
CVE-2022-31685,https://securityvulnerability.io/vulnerability/CVE-2022-31685,,VMware Workspace ONE Assist prior to 22.10 contains an Authentication Bypass vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.,Vmware,Vmware Workspace One Assist,9.8,CRITICAL,0.0021699999924749136,false,false,false,false,,false,false,2022-11-09T00:00:00.000Z,0
CVE-2022-31687,https://securityvulnerability.io/vulnerability/CVE-2022-31687,,VMware Workspace ONE Assist prior to 22.10 contains a Broken Access Control vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.,Vmware,Vmware Workspace One Assist,9.8,CRITICAL,0.002529999939724803,false,false,false,false,,false,false,2022-11-09T00:00:00.000Z,0
CVE-2022-31686,https://securityvulnerability.io/vulnerability/CVE-2022-31686,,VMware Workspace ONE Assist prior to 22.10 contains a Broken Authentication Method vulnerability. A malicious actor with network access to Workspace ONE Assist may be able to obtain administrative access without the need to authenticate to the application.,Vmware,Vmware Workspace One Assist,9.8,CRITICAL,0.002139999996870756,false,false,false,false,,false,false,2022-11-09T00:00:00.000Z,0
CVE-2022-31688,https://securityvulnerability.io/vulnerability/CVE-2022-31688,,"VMware Workspace ONE Assist prior to 22.10 contains a Reflected cross-site scripting (XSS) vulnerability. Due to improper user input sanitization, a malicious actor with some user interaction may be able to inject javascript code in the target user's window.",Vmware,Vmware Workspace One Assist,6.1,MEDIUM,0.0007200000109151006,false,false,false,false,,false,false,2022-11-09T00:00:00.000Z,0