CVE-2024-38834

Stored cross-site scripting vulnerability (CVE-2024-38834)

Description

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with editing access to cloud provider might be able to inject malicious script leading to stored cross-site scripting in the product VMware Aria Operations.

INFO

Published Date :

2024-11-26T11:56:48.573Z

Last Modified :

2024-12-06T20:04:02.459Z

Source :

vmware

AFFECTED PRODUCTS

The following products are affected by CVE-2024-38834 vulnerability.

Vendors	Products
Vmware	Aria Operations Cloud Foundation

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-38834.

URL	Resource
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25199

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact