Home
HIGH: 8.0 CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:HDefault status
affected
9.1.x.x (custom)
affected
9.0.x.x (custom)
affected
5.x (custom)
affected
Default status
affected
8.18.x (custom)
affected
8.18.x (custom)
affected
Default status
affected
5.x (custom)
affected
Description
VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scripts to perform administrative actions in VMware Cloud Foundation Operations.
Product status
9.1.x.x (custom)
9.0.x.x (custom)
5.x (custom)
8.18.x (custom)
8.18.x (custom)
5.x (custom)
References
support.broadcom.com/...l/content/SecurityAdvisories/0/37513