EUVD-2024-19840

Malicious code in bioql PyPI...

CVE-2024-22277

VMware Cloud Director Availability contains an HTML injection vulnerability. A malicious actor with network access to VMware Cloud Director Availability can craft malicious HTML tags to execute within replication tasks...

The vulnerability of the disaster recovery mechanism for the VMware Cloud Director Availability, related to deficiencies in neutralizing special symbols, allows attackers to execute cross-site scripting (XSS) attacks.

The vulnerability of the disaster recovery tool for VMware Cloud Director Availability relates to deficiencies in neutralizing special symbols. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting XSS attacks by injecting malicious HTML tags...

VMware Cloud Director Availability Security Vulnerability

VMware Cloud Director Availability is a Disaster Recovery-as-a-Service DRaaS solution from VMware, Inc. A security vulnerability exists in VMware Cloud Director Availability that stems from the inclusion of HTML injection, which allows an attacker with network access to craft malicious HTML tags...

VMSA-2024-0016: VMware Cloud Director Availability addresses an HTML injection vulnerability (CVE-2024-22277)

Advisory ID: | VMSA-2024-0016 ---|--- Severity: | Moderate CVSSv3 Range: | 6.4 Issue date: | 2024-07-04 Updated on: | 2024-07-04 Initial Advisory CVEs | CVE-2024-22277 Synopsis: | VMware Cloud Director Availability addresses an HTML injection vulnerability CVE-2024-22277 1. Impacted Products...