VMware NSX Stored Cross-Site Scripting Vulnerability in Gateway Firewall

A stored Cross-Site Scripting (XSS) vulnerability has been identified in VMware NSX's gateway firewall component. This vulnerability arises from inadequate input validation, allowing malicious actors to inject harmful scripts that are executed when the affected content is viewed. The vulnerability is present in VMware NSX versions 4.2.x, 4.2.1.x, 4.1.x, 4.0.x, as well as in NSX-T 3.2.x, VMware Cloud Foundation 5.2.x, 5.1.x, 5.0.x, and in VMware Telco Cloud Platform and Telco Cloud Infrastructure versions 5.x, 4.x, 3.x, and 2.x.

Impact

Exploitation of this vulnerability allows for stored Cross-Site Scripting, where injected scripts are executed in the context of the user viewing the affected content.

Remediation

Users can upgrade to VMware NSX versions 4.2.2.1, 4.2.1.4, 4.1.2.6, or NSX-T 3.2.4.2. VMware Cloud Foundation users should refer to the asynchronous patching guide available on the Broadcom Knowledge Base. VMware Telco Cloud Platform and Telco Cloud Infrastructure users can also consult the Broadcom Knowledge Base for patching instructions.