CVE-2026-41724
- EPSS 0.31%
- Veröffentlicht 08.06.2026 07:07:04
- Zuletzt bearbeitet 15.06.2026 18:50:11
VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scripts to perform administrative actions in VMware Clo...
- EPSS 0.4%
- Veröffentlicht 08.06.2026 07:06:11
- Zuletzt bearbeitet 16.06.2026 13:38:23
VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scripts to perform administrative actions in VMware Clo...
CVE-2026-41722
- EPSS 0.3%
- Veröffentlicht 08.06.2026 07:05:31
- Zuletzt bearbeitet 16.06.2026 13:40:57
VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scripts to perform administrative actions in VMware Clo...
CVE-2026-22721
- EPSS 0.69%
- Veröffentlicht 25.02.2026 20:00:15
- Zuletzt bearbeitet 04.03.2026 15:54:26
VMware Aria Operations contains a privilege escalation vulnerability. A malicious actor with privileges in vCenter to access Aria Operations may leverage this vulnerability to obtain administrative access in VMware Aria Operations. To remediate CVE-2...
- EPSS 0.41%
- Veröffentlicht 25.02.2026 19:33:14
- Zuletzt bearbeitet 04.03.2026 15:55:32
VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations. To remediate CVE-20...
CVE-2026-22719
- EPSS 17.42%
- Veröffentlicht 25.02.2026 19:18:59
- Zuletzt bearbeitet 04.03.2026 15:08:13
VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which may lead to remote code execution in VMware Aria Operations while support-assisted product...
CVE-2025-41245
- EPSS 0.58%
- Veröffentlicht 29.09.2025 17:15:31
- Zuletzt bearbeitet 15.04.2026 00:35:42
VMware Aria Operations contains an information disclosure vulnerability. A malicious actor with non-administrative privileges in Aria Operations may exploit this vulnerability to disclose credentials of other users of Aria Operations.
CVE-2025-41244
- EPSS 7.88%
- Veröffentlicht 29.09.2025 17:15:30
- Zuletzt bearbeitet 06.11.2025 13:58:13
VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled ...
CVE-2025-22231
- EPSS 0.15%
- Veröffentlicht 01.04.2025 13:15:40
- Zuletzt bearbeitet 15.04.2026 00:35:42
VMware Aria Operations contains a local privilege escalation vulnerability. A malicious actor with local administrative privileges can escalate their privileges to root on the appliance running VMware Aria Operations.
CVE-2025-22222
- EPSS 0.54%
- Veröffentlicht 30.01.2025 16:15:31
- Zuletzt bearbeitet 14.05.2025 16:47:55
VMware Aria Operations contains an information disclosure vulnerability. A malicious user with non-administrative privileges may exploit this vulnerability to retrieve credentials for an outbound plugin if a valid service credential ID is known.