VMware Releases Workarounds for CVE-2020-4006

Original release date: November 23, 2020 | Last revised: November 24, 2020

VMware has released workarounds to address a vulnerability—CVE-2020-4006—in VMware Workspace One Access, Access Connector, Identity Manager, and Identity Manager Connector. An attacker could exploit this vulnerability to take control of an affected system.

The Cybersecurity and Infrastructure Security Agency encourages users and administrators to review VMware Security Advisory VMSA-2020-0027 and CERT Coordination Center (CERT/CC) Vulnerability Note VU#724367 and apply the necessary workarounds.

This product is provided subject to this Notification and this Privacy & Use policy.