CVE-2022-31657
Description
VMware Workspace ONE Access and Identity Manager contain a URL injection vulnerability. A malicious actor with network access may be able to redirect an authenticated user to an arbitrary domain.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
VMware Workspace ONE Access and Identity Manager are vulnerable to URL injection, allowing an attacker with network access to redirect authenticated users to arbitrary domains.
Vulnerability
The URL injection vulnerability exists in VMware Workspace ONE Access and Identity Manager products. A malicious actor with network access can exploit this to redirect an authenticated user to an arbitrary domain. Affected versions include those prior to the updates released in VMSA-2022-0021 [1].
Exploitation
An attacker with network access can craft a malicious URL that, when accessed by an authenticated user, redirects them to an arbitrary domain controlled by the attacker. The attack requires user interaction (clicking the link) but no additional privileges beyond network access [1].
Impact
Successful exploitation allows the attacker to redirect the victim to a malicious website, potentially leading to credential theft, phishing attacks, or further compromise of the user's session [1].
Mitigation
VMware has released updates to address this vulnerability as part of VMSA-2022-0021. Users should apply the patches for their affected versions immediately. No workaround is available [1].
AI Insight generated on May 27, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- VMware/Workspace ONE Access and Identity Managerdescription
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- www.vmware.com/security/advisories/VMSA-2022-0021.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.