VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.
References
Link | Resource |
---|---|
https://www.vmware.com/security/advisories/VMSA-2023-0011.html | Patch Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: vmware
Published: 2023-05-30T15:05:53.284Z
Updated: 2023-05-30T15:06:05.576Z
Reserved: 2022-11-01T15:41:50.393Z
Link: CVE-2023-20884
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-05-30T16:15:09.390
Modified: 2023-06-05T18:42:23.287
Link: CVE-2023-20884
JSON object: View
Redhat Information
No data.
CWE