3 matches found
CVE-2014-3797
Cross-site scripting XSS vulnerability in VMware vCenter Server Appliance vCSA 5.1 before Update 3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2014-3797
CVE-2014-3797 is an XSS vulnerability in VMware vCenter Server Appliance (vCSA) 5.1 prior to Update 3, allowing remote attackers to inject arbitrary script/HTML via unspecified vectors. Connected sources confirm the issue and that remediation is available: vCSA 5.1 Update 3 (and related patches i...
VMware vSphere product updates address security vulnerabilities
a. VMware vCSA cross-site scripting vulnerabilityVMware vCenter Server Appliance vCSA contains a vulnerability that may allow for Cross Site Scripting. Exploitation of this vulnerability in vCenter Server requires tricking a user to click on a malicious link or to open a malicious web page. VMwar...