Multiple VMware Stored XSS Vulnerabilities Allow Attackers to Inject Malicious Scripts
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
Broadcom has disclosed three stored cross-site scripting (XSS) vulnerabilities affecting VMware Cloud Foundation Operations and several related products, warning that authenticated attackers could inject malicious scripts to perform administrative actions within the environment.<\/p>\n
Tracked as CVE-2026-41722, CVE-2026-41723, and CVE-2026-41724, the flaws were addressed in security advisory VMSA-2026-0004, published on June 8, 2026.<\/p>\n
Each vulnerability carries a CVSSv3 base score of 8.0, placing the issues in the \u201cImportant\u201d severity range. No workarounds are available, making patching the only viable remediation path.<\/p>\n
According to the advisory, VMware Cloud Foundation Operations<\/a> contains multiple stored cross-site scripting weaknesses introduced through improperly sanitized user-controlled input.<\/p>\n Stored XSS is particularly dangerous compared to reflected variants because the malicious payload is persisted server-side and executed whenever a victim loads the affected component, enabling repeatable attacks against multiple users.<\/p>\n The advisory outlines a clear attack path. A malicious actor holding privileges to create policies, views, or text-widgets could embed crafted scripts into these objects.<\/p>\n When rendered in the management interface, those scripts execute in the context of other users, potentially higher-privileged administrators, allowing the attacker to carry out administrative actions on their behalf.<\/p>\n While exploitation requires existing authenticated access with object-creation rights, the privilege escalation potential within an operations platform that oversees virtualized infrastructure makes the risk significant.<\/p>\n The vulnerabilities were privately reported to Broadcom by Alexis Bernazzani of Visa Inc. The advisory spans<\/a> a broad set of Broadcom virtualization products, including VMware Aria Operations, VMware Cloud Foundation Operations, VMware Cloud Foundation, VMware vSphere Foundation, and VMware Telco Cloud Platform. <\/p>\n Broadcom has released patches and updates that organizations should apply according to the Response Matrix.<\/p>\n Administrators should prioritize applying the listed fixed versions promptly, given the absence of any workaround.<\/p>\n Organizations are also advised to review role assignments and tighten permissions for creating policies, views, and text-widgets, limiting the pool of accounts capable of triggering these vulnerabilities while patches are rolled out.<\/p>\n Follow us on\u00a0Google News<\/a>,\u00a0LinkedIn<\/a>,\u00a0and\u00a0X<\/a>\u00a0to Get More Instant Updates.<\/strong><\/p>\n The post Multiple VMware Stored XSS Vulnerabilities Allow Attackers to Inject Malicious Scripts<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\n\n\n
\n \nProduct<\/th>\n Component<\/th>\n Affected Version<\/th>\n CVEs Addressed<\/th>\n Fixed Version<\/th>\n<\/tr>\n<\/thead>\n \n VMware Cloud Foundation \/ vSphere Foundation<\/td>\n VMware Cloud Foundation Operations<\/td>\n 9.1.x.x<\/td>\n CVE-2026-41722, CVE-2026-41723<\/td>\n 9.1.0.0<\/td>\n<\/tr>\n \n VMware Cloud Foundation \/ vSphere Foundation<\/td>\n VMware Cloud Foundation Operations<\/td>\n 9.0.x.x<\/td>\n CVE-2026-41722, CVE-2026-41723<\/td>\n 9.0.2.0 EP2<\/td>\n<\/tr>\n \n VMware Aria Operations<\/td>\n N\/A<\/td>\n 8.x<\/td>\n CVE-2026-41722, CVE-2026-41723<\/td>\n 8.18.6<\/td>\n<\/tr>\n \n VMware Aria Operations<\/td>\n N\/A<\/td>\n 8.x<\/td>\n CVE-2026-41722, CVE-2026-41723, CVE-2026-41724<\/td>\n 8.18.7<\/td>\n<\/tr>\n \n VMware Cloud Foundation<\/td>\n VMware Aria Operations<\/td>\n 5.x<\/td>\n CVE-2026-41722, CVE-2026-41723, CVE-2026-41724<\/td>\n 8.18.7<\/td>\n<\/tr>\n \n VMware Telco Cloud Platform<\/td>\n VMware Aria Operations<\/td>\n 5.x<\/td>\n CVE-2026-41722, CVE-2026-41723, CVE-2026-41724<\/td>\n KB443138<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/figure>\n