CVE-2024-22248

Summary

VMware SD-WAN Orchestrator contains an open redirect vulnerability.

A malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.

Affected Software

VendorProductVersion RangeStatus
N/AVMware SD-WAN OrchestratorVMware SD-WAN Orchestrator 5.xaffected

Weaknesses

  • Open redirect vulnerability in SD-WAN Orchestrator

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

CVE Program Container

Additional References

References