Severity
Medium
Analysis Summary
CVE-2025-22243 CVSS:7.5
VMware NSX Manager UI is vulnerable to a stored cross-site scripting (XSS) attack due to improper input validation.
CVE-2025-22244 CVSS:6.9
VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the gateway firewall due to improper input validation.
CVE-2025-22245 CVSS:5.9
VMware NSX contains a stored Cross-Site Scripting (XSS) vulnerability in the router port due to improper input validation.
Impact
- Cross-Site Scripting
Indicators of Compromise
CVE
CVE-2025-22243
CVE-2025-22244
CVE-2025-22245
Affected Vendors
VMware
Affected Products
- VMware Cloud Foundation
- VMware Telco Cloud Platform
- VMware NSX
Remediation
Refer to the VMware Security Advisory for patch, upgrade, or suggested workaround information.