VYPR
Medium severity5.4NVD Advisory· Published Sep 15, 2017· Updated Jun 17, 2026

CVE-2017-4926

CVE-2017-4926

Description

VMware vCenter Server (6.5 prior to 6.5 U1) contains a vulnerability that may allow for stored cross-site scripting (XSS). An attacker with VC user privileges can inject malicious java-scripts which will get executed when other VC users access the page.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:vmware:vcenter_server:6.5:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:vmware:vcenter_server:6.5:*:*:*:*:*:*:*
    • (no CPE)range: 6.5 prior to 6.5 U1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.