Home / Early Warning / Vulnerabilidades / CVE-2020-3997

CVE-2020-3997

Type: 
Cross-Site Scripting (XSS)
Severity: 
Low
Publication date: 
10/23/2020
Last modified: 
10/30/2020
Description
VMware Horizon Server (7.x prior to 7.10.3 or 7.13.0) contains a Cross Site Scripting (XSS) vulnerability. Successful exploitation of this issue may allow an attacker to inject malicious script which will be executed.
Impact
Access Vector: Through network
Access Complexity: Media
Authentication: Requires a single instance to exploit
Impact Type: Partially affects on system integrity + No impact on system confidentiality + No impact on system availability
Vulnerable software and versions
  • cpe:2.3:a:vmware:horizon:*:*:*:*:*:*:*:*
To consult the complete list of products and versions see this page
References to Advisories, Solutions, and Tools
Explanation of fields