CVE-2025-22243
published 2025-06-04CVE-2025-22243: VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper input validation.
high7.5CVSS 3.1
AVNACLPRHUIRSCCLILAH
VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper input validation.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| broadcom | vmware_nsx | — | — |
| broadcom | vmware_nsx | >= 3.2 < 4.1.2.6 | 4.1.2.6 |
| broadcom | vmware_nsx | >= 4.2.1 < 4.2.1.4 | 4.2.1.4 |
| vmware | cloud_foundation | 4.5 – 5.2.1.2 | — |
| vmware | telco_cloud_infrastructure | 2.2 – 3.0 | — |
| vmware | telco_cloud_platform | 3.0 – 5.0 | — |
| vmware | vmware_nsx | — | — |