A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote attacker to conduct a server-side request forgery (SSRF) attack. A successful exploit allows an attacker to enumerate information about the internal   structure of the EdgeConnect SD-WAN Orchestrator host leading to potential disclosure of sensitive information.
CVE-2023-37440 https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2023-37440 A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote attacker to conduct a server-side request forgery (SSRF) attack. A successful exploit allows an attacker to enumerate information about the internal   structure of the EdgeConnect SD-WAN Orchestrator host leading to potential disclosure of sensitive information. 2023-08-22T19:16:38Z