Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor with admin privileges can inject a malicious payload into the login banner and takeover the user account.
CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:L/I:L/A:LVMware Aria Operations For Networks
APPVmware6.0.0 – 6.12.0
Related vulnerabilities
Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access...
Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptogra...
Aria Operations for Networks contains a local privilege escalation vulnerability. A console user with access t...
Aria Operations for Networks contains an arbitrary file write vulnerability. An authenticated malicious actor ...
Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor with admin privi...