Vmware · Vmware Sd-Wan Orchestrator · CVE-2024-22248
**Name of the Vulnerable Software and Affected Versions**
VMware SD-WAN Orchestrator (affected versions not specified)
**Description**
The issue is related to an open redirect vulnerability. A malicious actor may redirect a victim to an attacker-controlled domain due to improper path handling, leading to sensitive information disclosure. This can allow a remote attacker to redirect a user to an arbitrary URL.
**Recommendations**
At the moment, there is no information about a newer version that contains a fix for this vulnerability.