3 matches found
CVE-2023-20868
CVE-2023-20868 is a reflected cross-site scripting vulnerability in VMware NSX-T due to insufficient input validation. A remote attacker could inject HTML/JavaScript to redirect victims to malicious pages. The connected VMSA-2023-0010 advisory specifies affected NSX-T 3.2.x and that the vulnerabi...
CVE-2020-3993
CVE-2020-3993 affects VMware NSX-T; the issue is a MITM-enabled vulnerability that allows a KVM host to download and install packages from the NSX manager, potentially compromising a transport node. The VMware advisory VMSA-2020-0023.3 and related materials specify fixes for NSX-T: update to NSX-...
CVE-2021-21981
CVE-2021-21981 affects VMware NSX-T 3.1.1, where an RBAC role-assignment issue can permit privilege escalation from a local guest user. The advisory notes exploitation requires the local guest account to be activated and that only NSX-T 3.1.1 is affected; remediation is to apply the fix in NSX-T ...