Workspace ONE SSRF (CVE-2021-22054) Scanner

Pre-authentication server-side request forgery in VMware Workspace ONE UEM (AirWatch). Used to breach Fortune 500 companies. Added to CISA KEV March 2026.

Disclosed in 2021, CVE-2021-22054 affects VMware Workspace ONE UEM and carries a CVSS score of 9.1 (CRITICAL). Despite patches being available, automated scanning continues to find unpatched systems years after initial disclosure.

1. Enter your domain in the free scanner above
2. Click "Check Now" — no signup required
3. VulnScan scans your VMware Workspace ONE UEM installation for CVE-2021-22054 indicators
4. Results in 60 seconds — free security grade included

What is CVE-2021-22054 (Workspace ONE SSRF)?

Pre-authentication server-side request forgery in VMware Workspace ONE UEM (AirWatch). Used to breach Fortune 500 companies. Added to CISA KEV March 2026.

How do I check if my website is vulnerable to CVE-2021-22054?

Enter your domain in VulnScan above. Our scanner checks for CVE-2021-22054 indicators and VMware Workspace ONE UEM version fingerprinting. Results in 60 seconds, no signup required.

Is CVE-2021-22054 still actively exploited?

Yes. Automated exploit kits continue targeting unpatched VMware Workspace ONE UEM systems worldwide. The CVSS score of 9.1 reflects the severity of exploitation. Patch immediately and verify with an external scan.

Don't wait — check for CVE-2021-22054 now

Free scan in 60 seconds. No signup, no credit card.

Also Check For These Critical Vulnerabilities