Vulnerability Details CVE-2023-20868
NSX-T contains a reflected cross-site scripting vulnerability due to a lack of input validation. A remote attacker can inject HTML or JavaScript to redirect to malicious pages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 59.0%
CVSS Severity
CVSS v3 Score 6.1
References
Products affected by CVE-2023-20868
-
cpe:2.3:a:vmware:nsx-t_data_center:3.2.0
-
cpe:2.3:a:vmware:nsx-t_data_center:3.2.0.1
-
cpe:2.3:a:vmware:nsx-t_data_center:3.2.1
-
cpe:2.3:a:vmware:nsx-t_data_center:3.2.1.1
-
cpe:2.3:a:vmware:nsx-t_data_center:3.2.1.2
-
cpe:2.3:a:vmware:nsx-t_data_center:3.2.2
-
cpe:2.3:a:vmware:nsx-t_data_center:3.2.2.1