VMware Aria Operation for Logs contains a stored cross-site scripting vulnerability. A malicious actor with admin privileges to VMware Aria Operations for Logs may be able to inject a malicious script that could be executed in a victim's browser when performing a delete action in the Agent Configuration.

VMware Aria Operation for Logs contains a stored cross-site scripting vulnerability. A malicious actor with admin privileges to VMware Aria Operations for Logs may be able to inject a malicious script that could be executed in a victim's browser when performing a delete action in the Agent Configuration.

Уязвимость инструмента для анализа сетевых журналов VMware Aria Operations for Logs, существующая из-за непринятия мер по защите структуры веб-страницы, позволяющая нарушителю внедрить и выполнить произвольный код в браузере пользователя в контексте уязвимого веб-сайта