Aria Operations for Networks contains a cross site scripting vulnerability. A malicious actor with admin privileges can inject a malicious payload into the login banner and takeover the user account.
References
Link | Resource |
---|---|
https://www.vmware.com/security/advisories/VMSA-2024-0002.html | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: vmware
Published: 2024-02-06T19:48:26.955Z
Updated: 2024-02-06T19:48:26.955Z
Reserved: 2024-01-08T18:43:03.534Z
Link: CVE-2024-22241
JSON object: View
NVD Information
Status : Analyzed
Published: 2024-02-06T20:16:04.080
Modified: 2024-02-10T04:11:46.267
Link: CVE-2024-22241
JSON object: View
Redhat Information
No data.
CWE