VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vmware identity_manager 3.3.6 |
||
vmware identity_manager 3.3.7 |
||
vmware workspace_one_access |
||
vmware cloud foundation - |
||
vmware identity_manager_connector |