CVE-2025-41228

MEDIUM

VMware vCenter Server 8.0-8.0 U3e and Cloud Foundation 4.5.x-5.x - Reflected Cross-Site Scripting

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-41228. PoCs published by Imraan Khan (Lich-Sec).

AI-analyzed exploit summary This is a detailed writeup describing a reflected XSS vulnerability in VMware vSphere Client 8.0.3.0, where unsanitized input in the `/folder` endpoint's query string is reflected into an HTML form's `action` attribute, allowing arbitrary JavaScript execution.

Description

VMware ESXi and vCenter Server contain a reflected cross-site scripting vulnerability due to improper input validation. A malicious actor with network access to the login page of certain ESXi host or vCenter Server URL paths may exploit this issue to steal cookies or redirect to malicious websites.

Exploits (1)

exploitdb WRITEUP

by Imraan Khan (Lich-Sec) · textwebappsmultiple

https://www.exploit-db.com/exploits/52406

View Code ZIP pw:eip

This is a detailed writeup describing a reflected XSS vulnerability in VMware vSphere Client 8.0.3.0, where unsanitized input in the `/folder` endpoint's query string is reflected into an HTML form's `action` attribute, allowing arbitrary JavaScript execution.

Classification

Writeup 100%

Attack Type

Xss

Complexity

Trivial

Reliability

Reliable

Target: VMware vSphere Client 8.0.3.0

Auth required

Prerequisites: Authenticated session in the vSphere Client web interface · Ability to intercept and modify HTTP requests (e.g., via Burp Suite)

MITRE ATT&CK

T1059.007 - JavaScript

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Various Sources

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25717

Scores

CVSS v3 4.3

EPSS 0.0601

EPSS Percentile 90.9%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-79

Status published

Products (6)

VMware/Cloud Foundation 5.x, 4.5.x

VMware/ESXi 7.0 - ESXi70U3sv-24723868

VMware/ESXi 8.0 - ESXi80U3se-24659227

VMware/Telco Cloud Infrastructure 3.x,2.x

VMware/Telco Cloud Platform 5.x, 4.x, 3.x, 2.x

VMware/vCenter Server 8.0 - 8.0 U3e

Published May 20, 2025

Tracked Since Feb 18, 2026