CVE-2015-6931
Description
Cross-site scripting (XSS) vulnerability in the vSphere Web Client in VMware vCenter Server 5.0 before U3g, 5.1 before U3d, and 5.5 before U2d allows remote attackers to inject arbitrary web script or HTML via a crafted URL.
Risk Information
Base Score
6.1
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
EPSS Score
Exploitation Probability
0.159
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Multiple Vulnerabilities are affected in VMware vCenter 5.0 | Windows |
| Multiple Vulnerabilities are affected in VMware vCenter 5.1 | Windows |
| Multiple Vulnerabilities are affected in VMware vCenter 5.5 | Windows |
| Multiple Vulnerabilities are affected in VMware vCenter Server 5.0 | Windows |
| Multiple Vulnerabilities are affected in VMware vCenter Server 5.1 | Windows |
| Multiple Vulnerabilities are affected in VMware vCenter Server 5.5 | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234