CVE-2017-4929

MEDIUM

VMware NSX Edge <6.2.9, <6.3.5 - XSS

Title source: llm
STIX 2.1

Description

VMware NSX Edge (6.2.x before 6.2.9 and 6.3.x before 6.3.5) contains a moderate Cross-Site Scripting (XSS) issue which may lead to information disclosure.

References (3)

Core 3
Core References
Patch, Vendor Advisory x_refsource_confirm
https://www.vmware.com/security/advisories/VMSA-2017-0019.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/101891
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1039837

Scores

CVSS v3 6.1
EPSS 0.0022
EPSS Percentile 44.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Details

CWE
CWE-79
Status published
Products (16)
VMware/NSX Edge 6.2.x before 6.2.9
VMware/NSX Edge 6.3.x before 6.3.5
vmware/nsx_edge 6.2.0
vmware/nsx_edge 6.2.1
vmware/nsx_edge 6.2.2
vmware/nsx_edge 6.2.3
vmware/nsx_edge 6.2.4
vmware/nsx_edge 6.2.5
vmware/nsx_edge 6.2.6
vmware/nsx_edge 6.2.7
... and 6 more
Published Nov 17, 2017
Tracked Since Feb 18, 2026