5.6 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
34.6%
Cross-site scripting (XSS) vulnerability in the Host Client in VMware vSphere Hypervisor (aka ESXi) 5.5 and 6.0 allows remote authenticated users to inject arbitrary web script or HTML via a crafted VM.
www.securityfocus.com/bid/94998
www.securitytracker.com/id/1037501
www.vmware.com/security/advisories/VMSA-2016-0023.html