Detections
Analytics

CVE-2026-22720

critical

Description

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations. To remediate CVE-2026-22720, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' of VMSA-2026-0001 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947https:// .

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947

https://www.darkreading.com/cloud-security/vmware-aria-operations-bug-exploited-cloud-risk

https://thehackernews.com/2026/03/cisa-adds-actively-exploited-vmware.html

https://www.securityweek.com/vmware-aria-operations-vulnerability-could-allow-remote-code-execution/

https://securityaffairs.com/188445/security/vmware-aria-operations-flaws-could-enable-remote-attacks.html

https://techdocs.broadcom.com/us/en/vmware-cis/aria/aria-operations/8-18/vmware-aria-operations-8186-release-notes.html

Details

Source: Mitre, NVD

Published: 2026-02-25

Updated: 2026-03-04

Risk Information

CVSS v2

Base Score: 9

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Severity: High

CVSS v3

Base Score: 9

Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.00076