VYPR
Medium severity5.4NVD Advisory· Published Mar 16, 2016· Updated Jun 17, 2026

CVE-2015-2344

CVE-2015-2344

Description

Cross-site scripting (XSS) vulnerability in VMware vRealize Automation 6.x before 6.2.4 on Linux allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:a:vmware:vrealize_automation:6.0:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:vmware:vrealize_automation:6.0:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.0.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.0.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.0.1.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.1.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.2.1:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.2.2:*:*:*:*:*:*:*
    • cpe:2.3:a:vmware:vrealize_automation:6.2.3:*:*:*:*:*:*:*
    • (no CPE)range: <6.2.4

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.