CVE-2020-3975
N/A
N/A
Summary
VMware App Volumes 2.x prior to 2.18.6 and VMware App Volumes 4 prior to 2006 contain a Stored Cross-Site Scripting (XSS) vulnerability. A malicious actor with access to create and edit applications or create storage groups, may be able to inject malicious script which will be executed by a victim's browser when viewing.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | VMware App Volumes | VMware App Volumes 2.x prior to 2.18.6 and VMware App Volumes 4 prior to 2006 | affected |
Weaknesses
- Stored Cross-Site Scripting (XSS) vulnerability
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.