The export function of the vRealize Log Insight management tool is vulnerable, allowing attackers to compromise the integrity of the protected information.

The vulnerability of the export function of the vRealize Log Insight management tool exists due to the lack of measures taken to neutralize special elements. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information...

The vulnerability of the log management tool vRealize Log Insight, related to the lack of security measures for the website structure, allows attackers to perform cross-site scripting attacks.

The vulnerability of the vRealize Log Insight log management tool is related to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...

The vulnerability of the log file management tool vRealize Log Insight, related to the lack of security measures for website structures, allows attackers to perform cross-site scripting attacks.

The vulnerability of the log file management tool vRealize Log Insight is related to the lack of security measures for the website structure. Exploiting this vulnerability could allow a malicious actor to perform a cross-site scripting attack remotely...

Security Bulletin: Vulnerability in IBM WebSphere Liberty Profile affects IBM InfoSphere Identity Insight (CVE-2022-22475 and CVE-2022-22476)

Summary The IBM WebSphere Liberty Profile used in IBM InfoSphere Identity Insight is vulnerable to identity spoofing by an authenticated user. Vulnerability Details Refer to the security bulletins listed in the Remediation/Fixes section Affected Products and Versions Affected Products| Versions...

Security Bulletin: Updating OpenJDK in Identity Insight 10.0 to 17.0.3

Summary This document provides instructions on how to upgrade OpenJDK used in IBM InfoSphere Identity Insight II 10.0 to 17.0.3. Vulnerability Details This document provides instructions on how to upgrade OpenJDK used in IBM InfoSphere Identity Insight II 10.0 to 17.0.0.3. NOTE: Please substitute...

Security Bulletin: Updating OpenJDK in Identity Insight 10.0 to 17.0.3

Summary This document provides instructions on how to upgrade OpenJDK used in IBM InfoSphere Identity Insight II 10.0 to 17.0.3. Vulnerability Details This document provides instructions on how to upgrade OpenJDK used in IBM InfoSphere Identity Insight II 10.0 to 17.0.0.3. NOTE: Please substitute...

VMware vRealize Log Insight 8.x < 8.8.2 XSS (VMSA-2022-0019)

The VMware vRealize Log Insight application running on the remote host is 8.0.0 or later but prior to 8.8.2. It is, therefore, affected by multiple XSS vulnerabilities. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. C...

CVE-2022-31654

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...

CVE-2022-31654

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...

CVE-2022-31655

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...

CVE-2022-31655

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...

CVE-2022-31655

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...

CVE-2022-31654

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...

Cross site scripting

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...

Cross site scripting

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...

CVE-2022-31655

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in alerts...

CVE-2022-31655

CVE-2022-31655 affects VMware vRealize Log Insight before 8.8.2. The issue is a stored cross-site scripting vulnerability caused by improper input sanitization in alerts, as documented by Red Hat, NVD, and VMware advisories. The vulnerability arises in the alert configuration/input path and can b...

CVE-2022-31654

VMware vRealize Log Insight in versions prior to 8.8.2 contain a stored cross-site scripting vulnerability due to improper input sanitization in configurations...

CVE-2022-31654

CVE-2022-31654 affects VMware vRealize Log Insight prior to 8.8.2. The issue is a stored cross-site scripting (XSS) vulnerability caused by improper input sanitization in configurations, enabling malicious input to be stored and potentially executed in the context of an admin-facing interface. Th...

VMware vRealize Log Insight 跨站脚本漏洞

VMware vRealize Log Insight is a centralized log management solution from VMware. The product supports features such as log organization and log analysis. A cross-site scripting vulnerability exists in VMware vRealize Log Insight versions prior to 8.8.2, which stems from improper input escaping i...