CVE-2022-32225

Summary

A reflected DOM-Based XSS vulnerability has been discovered in the Help directory of Veeam Management Pack for Microsoft System Center 8.0. This vulnerability could be exploited by an attacker by convincing a legitimate user to visit a crafted URL on a Veeam Management Pack for Microsoft System Center server, allowing for the execution of arbitrary scripts.

Affected Software

VendorProductVersion RangeStatus
n/aVeeam Management Pack for Microsoft System Center8affected

Weaknesses

  • CWE-79: Cross-site Scripting (XSS) - DOM (CWE-79)

ADP Enrichment

CVE Program Container

Additional References

References