CVE-2024-22248

Name of the Vulnerable Software and Affected Versions VMware SD-WAN Orchestrator (affected versions not specified)

Description The issue is related to an open redirect vulnerability. A malicious actor may redirect a victim to an attacker-controlled domain due to improper path handling, leading to sensitive information disclosure. This can allow a remote attacker to redirect a user to an arbitrary URL.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.