Broadcom Warns of Stored XSS Vulnerabilities in VMware Products

Broadcom has issued a security warning regarding multiple stored cross-site scripting (XSS) vulnerabilities in VMware Cloud Foundation and other VMware products. The flaws allow attackers to inject malicious scripts into web interfaces, which are then executed in the context of a user’s session. No specific CVE IDs, affected versions, or exploitation details were disclosed in the notice. Updates have been released to mitigate the vulnerabilities. The impact includes potential unauthorized access, data theft, or manipulation of affected systems. The advisory was published by Heise without a specified date.