VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
vmware identity manager 3.3.6 |
||
vmware identity manager 3.3.7 |
||
vmware workspace one access |
||
vmware cloud foundation - |
||
vmware identity manager connector |
Vulmon