- Description
- VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper input validation.
- Source
- security@vmware.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Secondary
- Base score
- 7.5
- Impact score
- 5.3
- Exploitability score
- 1.7
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-79
- Hype score
- Not currently trending
VMware NSX の XSS 脆弱性 CVE-2025-22243/22244/22245 が FIX:コード・インジェクションの恐れ https://t.co/Pme9J6QFje VMware NSX に存在する、複数の XSS 脆弱性が FIX しました。仮想化インフラへのリモートからの侵害の恐れ
@iototsecnews
17 Jun 2025
42 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
⚠️Vulnerabilidades en los productos VMware ❗CVE-2025-22243 ❗CVE-2025-22244 ➡️Más info: https://t.co/qtEpm99loo https://t.co/4vFEOjKd94
@CERTpy
10 Jun 2025
333 Impressions
0 Retweets
3 Likes
0 Bookmarks
0 Replies
0 Quotes
Actively exploited CVE : CVE-2025-22243
@transilienceai
6 Jun 2025
33 Impressions
0 Retweets
0 Likes
0 Bookmarks
1 Reply
0 Quotes
VMware NSXに3件のストアド型XSS脆弱性(CVE-2025-22243〜22245)が発見され、Broadcomが修正パッチを公開。NSX Manager UI、ゲートウェイファイアウォール、ルーターポートが影響を受け、認証済みの攻撃者によるコード注
@01ra66it
5 Jun 2025
352 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:broadcom:vmware_nsx:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BA802D68-9739-4EF6-8A2A-841E5A30B747",
"versionEndExcluding": "4.1.2.6",
"versionStartIncluding": "3.2"
},
{
"criteria": "cpe:2.3:a:broadcom:vmware_nsx:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2EA245FB-84B8-4B53-8697-029435CD793E",
"versionEndExcluding": "4.2.1.4",
"versionStartIncluding": "4.2.1"
},
{
"criteria": "cpe:2.3:a:broadcom:vmware_nsx:4.2.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ED3E4DA6-50BF-402E-AC32-29FB702C23DA"
},
{
"criteria": "cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1D2A1D50-E58C-4FB4-821E-CB17B4D6170C",
"versionEndIncluding": "5.2.1.2",
"versionStartIncluding": "4.5"
},
{
"criteria": "cpe:2.3:a:vmware:telco_cloud_infrastructure:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "904AA81A-D1C3-4DAF-BB2C-C51FEDF5B3F6",
"versionEndIncluding": "3.0",
"versionStartIncluding": "2.2"
},
{
"criteria": "cpe:2.3:a:vmware:telco_cloud_platform:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E0E78094-639D-47D6-998B-4EB111E45D18",
"versionEndIncluding": "5.0",
"versionStartIncluding": "3.0"
}
],
"operator": "OR"
}
]
}
]