Vmware Nsx Data Center vulnerabilities

CVE-2022-31678 [CRITICAL] CWE-611 CVE-2022-31678: VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. On VCF 3.x inst VMware Cloud Foundation (NSX-V) contains an XML External Entity (XXE) vulnerability. On VCF 3.x instances with NSX-V deployed, this may allow a user to exploit this issue leading to a denial-of-service condition or unintended information disclosure.

CVE-2022-22945 [HIGH] CWE-78 CVE-2022-22945: VMware NSX Edge contains a CLI shell injection vulnerability. A malicious actor with SSH access to a VMware NSX Edge contains a CLI shell injection vulnerability. A malicious actor with SSH access to an NSX-Edge appliance can execute arbitrary commands on the operating system as root.