Vulnerabilities

CVE-2022-22944

by Fred · 02/03/2022

VMware Workspace ONE Boxer contains a stored cross-site scripting (XSS) vulnerability. Due to insufficient sanitization and validation, in VMware Workspace ONE Boxer calendar event descriptions, a malicious actor can inject script tags to execute arbitrary script within a user’s window.

Date published : 2022-03-02

https://www.vmware.com/security/advisories/VMSA-2022-0006.html

Similar

Tags: Cybersecurity Alert