Vmware released security updates to address cross-site scripting (XSS) vulnerability (CVE-2022-22944) in VMware Workspace ONE Boxer. VMware has evaluated this issue to be in the Moderate severity range with a CVSSv3 base score of 6.6. An attacker could exploit this vulnerability to take control of an affected system.

More information on vulnerability and updates can be found in Vmware security advisory – VMSA-2022-0006.