CVE-2025-22243 — VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attac... | CVE Daily

High CVSS 7.5

Overview

VMware NSX Manager UI is vulnerable to a stored Cross-Site Scripting (XSS) attack due to improper input validation.

CWE: CWE-79 Published: 2025-06-04T20:15:22.120

Risk analysis

This vulnerability is rated 🟠 HIGH.

CVSS: 7.5 (HIGH)
Detected tags: xss (tag impact: MODERATE)

Recommended actions:

Apply context-aware output encoding.
Enable Content-Security-Policy and HttpOnly/SameSite cookies.

Recommended tools

Tags

Cross-site Scripting (XSS)