Skip to main content

Telco Cloud Platform CVE-2025-22243

| EUVDEUVD-2025-16910 HIGH
Cross-site Scripting (XSS) (CWE-79)
2025-06-04 security@vmware.com
7.5
CVSS 3.1 · NVD
Share

Severity by source

NVD PRIMARY
7.5 HIGH
AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:H

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
High
User Interaction
Required
Scope
Changed
Confidentiality
Low
Integrity
Low
Availability
High

Lifecycle Timeline

3
EUVD ID Assigned
Mar 14, 2026 - 17:29 euvd
EUVD-2025-16910
Analysis Generated
Mar 14, 2026 - 17:29 vuln.today
CVE Published
Jun 04, 2025 - 20:15 nvd
HIGH 7.5

DescriptionCVE.org

VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper input validation.

AnalysisAI

VMware NSX Manager UI is vulnerable to stored cross-site scripting (XSS) attacks via improper input validation in user-controllable fields (CWE-79). An authenticated attacker with high privileges can inject malicious scripts that persist in the application and execute in the browsers of other users, potentially leading to session hijacking, credential theft, or unauthorized administrative actions. With a CVSS score of 7.5 and network-accessible attack vector, this vulnerability poses a moderate-to-high risk to NSX Manager deployments, particularly in multi-user environments.

Technical ContextAI

The vulnerability exists in the VMware NSX Manager web UI tier, which processes user input without adequate sanitization or encoding before storing and rendering it in HTML responses. This classic stored XSS vulnerability (CWE-79: Improper Neutralization of Input During Web Page Generation) occurs when application fields accept user input, store it in backend data stores (databases, configuration files), and subsequently render that content to other authenticated users without proper HTML entity encoding or Content Security Policy (CSP) protections. The affected technology stack likely includes NSX Manager's REST API and web UI components built on Java/Spring frameworks common to VMware infrastructure products. CPE context would identify affected NSX Manager versions (typically CPE:2.3:a:vmware:nsx:*:*:*:*:manager:*:*:*), with specific version ranges requiring identification from vendor advisories.

RemediationAI

Immediate actions: (1) Apply vendor-supplied security patches for NSX Manager UI component to patched versions (specific versions to be identified from VMware VMSA advisory). (2) If patching is not immediately possible, implement network segmentation to restrict NSX Manager UI access to trusted administrative networks only, reducing exposure to untrusted users. (3) Deploy Web Application Firewall (WAF) rules to detect/block injection payloads in common XSS attack vectors (script tags, event handlers, SVG payloads). (4) Enable and enforce Content Security Policy (CSP) headers in NSX Manager responses to prevent inline script execution. (5) Conduct administrative audit logs to identify if stored XSS has been exploited (search for malicious script injections in configuration audit trails). (6) Reset sessions/credentials for administrative accounts that may have been compromised via XSS attacks. Vendor patch availability and download links should be obtained from VMware's official security advisory pages; do not rely on third-party sources.

CVE-2025-22224 CRITICAL
9.3 Mar 04

VMware ESXi and Workstation contain a TOCTOU race condition leading to out-of-bounds write, allowing local administrator

CVE-2025-22225 HIGH
8.2 Mar 04

VMware ESXi contains an arbitrary write vulnerability that allows privileged VMX process users to trigger kernel writes,

CVE-2026-22719 HIGH
8.1 Feb 25

VMware Aria Operations contains a command injection vulnerability (CVE-2026-22719, CVSS 8.1) that allows unauthenticated

CVE-2025-22226 HIGH
7.1 Mar 04

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability via HGFS out-of-bounds read, allowi

CVE-2025-22249 HIGH
8.2 May 13

VMware Aria automation contains a DOM based Cross-Site Scripting (XSS) vulnerability. Rated high severity (CVSS 8.2), th

CVE-2026-22720 HIGH
8.0 Feb 25

Stored XSS in VMware Aria Operations allows authenticated users with benchmark creation privileges to inject malicious s

CVE-2025-22244 MEDIUM
6.9 Jun 04

VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the gateway firewall due to improper input vali

CVE-2026-22721 MEDIUM
6.2 Feb 25

Privilege escalation in VMware Aria Operations allows authenticated users with vCenter access to escalate their privileg

CVE-2025-22245 MEDIUM
5.9 Jun 04

VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the router port due to improper input validatio

CVE-2025-41244 HIGH POC
7.8 Sep 29

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. Rated high severity (CVSS 7.

Share

CVE-2025-22243 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy