CVE-2023-20884 Information

Description

VMware Workspace ONE Access and VMware Identity Manager contain an insecure redirect vulnerability. An unauthenticated malicious actor may be able to redirect a victim to an attacker controlled domain due to improper path handling leading to sensitive information disclosure.

Reference

https://www.vmware.com/security/advisories/VMSA-2023-0011.html