CVE-2025-22245

VMware NSX contains a stored Cross-Site Scripting XSS vulnerability in the router port due to improper input validation...

CVE-2025-22245

VMware NSX contains a stored XSS vulnerability in the router port due to improper input validation (CVE-2025-22245). The issue is addressed by VMware Broadcom VMSA-2025-0012/0012.1, with fixed versions listed for various NSX releases: NSX 4.2.2.1, 4.2.1.4, 4.1.2.6 (and NSX-T 3.2.4.2; higher-level...

CVE-2025-22244

CVE-2025-22244 is a stored XSS in VMware NSX gateway firewall caused by improper input validation. Connected advisories confirm multiple NSX components are affected (gateway firewall among others) and provide fixed versions: NSX 4.2.2.1, NSX 4.2.1.4, and NSX 4.1.2.6 (and related NSX-T/Cloud Found...

CVE-2025-22244

VMware NSX contains a stored Cross-Site Scripting XSS vulnerability in the gateway firewall due to improper input validation...

CVE-2025-22244

VMware NSX contains a stored Cross-Site Scripting XSS vulnerability in the gateway firewall due to improper input validation...

CVE-2025-22243

VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting XSS attack due to improper input validation...

CVE-2025-22243

CVE-2025-22243 is a stored XSS vulnerability in VMware NSX Manager UI caused by improper input validation. The issue affects the NSX Manager UI component where an attacker with privileges to create or modify network settings could inject script that executes when a user views the affected page. T...

CVE-2025-22243

VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting XSS attack due to improper input validation...

VMware NSX Manager UI 安全漏洞

VMware NSX Manager UI is a graphical interface for configuring and managing NSX network environments from VMware, Inc. A security vulnerability exists in VMware NSX Manager UI that stems from improper input validation and could lead to a stored cross-site scripting attack...

VMware NSX 安全漏洞

VMware NSX is a complete L2-L7 network and security virtualization platform from VMware. VMware NSX is a complete L2-L7 network and security virtualization platform from VMware. It provides virtual machines with a virtualized network, isolates virtual machines from the physical network, and makes...

PT-2025-23845 · Vmware · Vmware Nsx

Name of the Vulnerable Software and Affected Versions: VMware NSX affected versions not specified Description: The issue is related to a stored Cross-Site Scripting XSS vulnerability in the router port due to improper input validation. This allows for malicious scripts to be stored and executed,...

PT-2025-23844 · Vmware · Vmware Nsx

Name of the Vulnerable Software and Affected Versions: VMware NSX affected versions not specified Description: The issue is related to a stored Cross-Site Scripting XSS vulnerability in the gateway firewall of VMware NSX, caused by improper input validation. This allows for malicious scripts to b...

PT-2025-23843 · Vmware · Vmware Nsx Manager Ui

Name of the Vulnerable Software and Affected Versions: VMware NSX Manager UI affected versions not specified Description: The issue is related to a stored Cross-Site Scripting XSS attack due to improper input validation. This allows an attacker to inject malicious scripts into the system. No...

VMSA-2025-0012: VMware NSX updates address multiple vulnerabilities (CVE-2025-22243, CVE-2025-22244, CVE-2025-22245)

Advisory ID: | VMSA-2025-0012.1 ---|--- Advisory Severity: | Important CVSSv3 Range: | 5.9-7.5 Synopsis: | VMware NSX updates address multiple vulnerabilities CVE-2025-22243, CVE-2025-22244, CVE-2025-22245 Issue date: | 2025-06-04 Updated on: | 2025-07-18 Initial Advisory CVEs | CVE-2025-22243,...

Medium: open-vm-tools

Issue Overview: VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM. CVE-2025-22247 Affected Packages: open-vm-tools Issue Correction: Run dn...

Photon OS 5.0: Bindutils PHSA-2025-5.0-0525

An update of the bindutils package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0525. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Python3 PHSA-2025-4.0-0787

An update of the python3 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0787. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Rubygem PHSA-2025-4.0-0807

An update of the rubygem package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0807. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Perl PHSA-2025-4.0-0751

An update of the perl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0751. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Freetype2 PHSA-2025-4.0-0806

An update of the freetype2 package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0806. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...