https://edermi.github.io/tags/vmware/Recent content in Vmware on edermi's BlogHugoen-usMon, 02 Mar 2026 21:55:17 +0100https://edermi.github.io/post/2021/vmware_vulnerabilities/Sun, 29 Aug 2021 00:00:00 +0000https://edermi.github.io/post/2021/vmware_vulnerabilities/<p>This post is a short notice about vulnerabilities in VMware products I found earlier this year. During a penetration test of a freshly built environment, I took a closer look at VMware Unified Access Gateway (UAG) in combination with devices enrolled and managed via VMware Unified Endpoint Management (UEM). I found a reflected XSS vulnerability on VMware&rsquo;s authenticator <code>vmwareidentity.de</code> that can be abused by sending links to unauthenticated victims. Also, I found it possible to export a user&rsquo;s authentication certificate, which allows to access zero trust protected resources without access to the user&rsquo;s device or account on a trusted system. There has been no advisory or notification for affected customers I am aware of. The disclosure deadline was already a few weeks ago and VMware did not respond to multiple attempts of contacting them as well as offering an extension of the responsible disclosure timeframe, therefore I am releasing the vulnerability details to the public.</p>