Skip to main content

Aria Automation

2 CVEs product

Monthly

CVE-2025-22249 HIGH PATCH This Week

VMware Aria automation contains a DOM based Cross-Site Scripting (XSS) vulnerability. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS VMware Aria Automation Cloud Foundation Telco Cloud Platform
NVD
CVSS 3.1
8.2
EPSS
0.2%
CVE-2024-22280 HIGH This Week

VMware Aria Automation does not apply correct input validation which allows for SQL-injection in the product. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi VMware Aria Automation Cloud Foundation
NVD
CVSS 3.1
8.1
EPSS
0.5%
EPSS 0% CVSS 8.2
HIGH PATCH This Week

VMware Aria automation contains a DOM based Cross-Site Scripting (XSS) vulnerability. Rated high severity (CVSS 8.2), this vulnerability is remotely exploitable, no authentication required, low attack complexity.

XSS VMware Aria Automation +2
NVD
EPSS 0% CVSS 8.1
HIGH This Week

VMware Aria Automation does not apply correct input validation which allows for SQL-injection in the product. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi VMware Aria Automation +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy