CVE-2014-3797CVE-2014-3797

Affected configuration(s):

cpe:/a:vmware:vcenter_server_appliance:5.1
cpe:/a:vmware:vcenter_server_appliance:5.1:update_1
cpe:/a:vmware:vcenter_server_appliance:5.1:update_2

Date published: 2014-12-08T06:59:04.470-05:00

Date last modified: 2014-12-08T10:51:45.803-05:00

CVSS Score: 4.3

Principal attack vector: NETWORK

Complexity:  MEDIUM

Reference URL: http://seclists.org/fulldisclosure/2014/Dec/23

Summary: Cross-site scripting (XSS) vulnerability in VMware vCenter Server Appliance (vCSA) 5.1 before Update 3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CategoriesUncategorised

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.