Arbitrary Script Injection in VMware vRealize Automation 6.x on Linux

Arbitrary Script Injection in VMware vRealize Automation 6.x on Linux

CVE-2015-2344 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in VMware vRealize Automation 6.x before 6.2.4 on Linux allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.