SynopsisA virtualization appliance installed on the remote host is affected by DOM-based XSS vulnerability.
DescriptionThe version of VMware vRealize Automation installed on the remote host is 7.0.x, 7.1.x, 7.2.x, or 7.3.x < 7.3.1. It is, therefore, affected by vulnerability that may allow for a DOM-based cross-site scripting (XSS) attack. Exploitation of this issue may lead to the compromise of the vRA user's workstation.
SolutionUpgrade to VMware vRealize Automation version 7.3.1 or later.