VMware Patches Several Vulnerabilities in Multiple Products (

VMware Patches Several Vulnerabilities in Multiple Products (VMSA-2022-0021)

On August 2, VMware issued an advisory (VMSA-2022-0021) for ten vulnerabilities across several of its products. The most severe vulnerability addressed is CVE-2022-31656, an authentication bypass vulnerability in VMware Workspace ONE Access, Identity Manager and vRealize Automation that was assigned a CVSSv3 score of 9.8. Notably, this vulnerability could be chained with other vulnerabilities patched in this release to achieve remote code execution.

Organizations should patch these vulnerabilities as soon as possible. A full breakdown of vulnerable and patched versions of all products can be found on the advisory page.

For more information about the vulnerability, including the availability of patches and Tenable product coverage, please visit our blog.

Vulnerability Watch

Forum Discussion

VMware Patches Several Vulnerabilities in Multiple Products (

Recent Discussions

Frequently Asked Questions About Notepad++ Supply Chain Compromise

Ivanti Endpoint Manager Mobile Zero-Days Exploited (CVE-2026-1281, CVE-2026-1340)

Oracle January 2026 Critical Patch Update Addresses 158 CVEs

CVE-2025-64155: Exploit Code Released for Critical Fortinet FortiSIEM Vulnerability

Microsoft’s January 2026 Patch Tuesday Addresses 113 CVEs (CVE-2026-20805)

Americas

Europe

Asia / Australia