CVE-2026-22720 - Vulnerability Details - OpenCVE

VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations. To remediate CVE-2026-22720, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' of VMSA-2026-0001 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947https:// .

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required Low

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact High

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

References

Link	Providers
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947
https://techdocs.broadcom.com/us/en/vmware-cis/aria/aria-operations/8-18/vmware-aria-operations-8186-release-notes.html

History

Wed, 25 Feb 2026 20:00:00 +0000

Type	Values Removed	Values Added
Description		VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations. To remediate CVE-2026-22720, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' of VMSA-2026-0001 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947https:// .
Title		VMware Aria Operations stored cross-site scripting vulnerability
Weaknesses		CWE-79
References		https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947 https://techdocs.broadcom.com/us/en/vmware-cis/aria/aria-operations/8-18/vmware-aria-operations-8186-release-notes.html
Metrics		cvssV3_1 `{'score': 8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H'}`

MITRE

Status: PUBLISHED

Assigner: vmware

Published: 2026-02-25T19:33:14.729Z

Updated: 2026-02-25T20:55:48.539Z

Reserved: 2026-01-09T06:54:36.841Z

Link: CVE-2026-22720

Vulnrichment

No data.

NVD

Status : Received

Published: 2026-02-25T20:23:47.077

Modified: 2026-02-25T20:23:47.077

Link: CVE-2026-22720

Redhat

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-22720", "assignerOrgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d", "state": "PUBLISHED", "assignerShortName": "vmware", "dateReserved": "2026-01-09T06:54:36.841Z", "datePublished": "2026-02-25T19:33:14.729Z", "dateUpdated": "2026-02-25T20:55:48.539Z"}, "containers": {"cna": {"affected": [{"defaultStatus": "affected", "packageName": "vmware-aria-operations", "product": "VMware Aria Operations", "vendor": "VMware", "versions": [{"lessThan": "8.18.6", "status": "affected", "version": "8.18.0", "versionType": "custom"}, {"status": "unaffected", "version": "8.18.6"}]}, {"defaultStatus": "affected", "packageName": "vmware-cloud-foundation-operations", "product": "VMware Cloud Foundation", "vendor": "VMware", "versions": [{"lessThan": "5.2.3", "status": "affected", "version": "4.0", "versionType": "custom"}, {"lessThan": "9.0.2", "status": "affected", "version": "9.0", "versionType": "custom"}, {"status": "unaffected", "version": "5.2.3"}, {"status": "affected", "version": "9.0.2"}]}, {"defaultStatus": "affected", "packageName": "vmware-telco-cloud-platform", "product": "VMware Telco Cloud Platform", "vendor": "VMware", "versions": [{"lessThan": "5.2.3", "status": "affected", "version": "4.0", "versionType": "custom"}, {"status": "unaffected", "version": "5.2.3", "versionType": "custom"}]}, {"defaultStatus": "affected", "packageName": "vmware-telco-cloud-infrastructure", "product": "VMware Telco Cloud Infrastructure", "vendor": "VMware", "versions": [{"lessThan": "5.2.3", "status": "affected", "version": "2.0", "versionType": "custom"}, {"status": "unaffected", "version": "5.2.3"}]}], "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations. </p><p>To remediate CVE-2026-22720, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' of <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947https://\">VMSA-2026-0001</a>.</p>"}], "value": "VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations.\u00a0\n\nTo remediate CVE-2026-22720, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' of\u00a0 VMSA-2026-0001 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947https:// ."}], "metrics": [{"cvssV3_1": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "LOW", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H", "version": "3.1"}, "format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d", "shortName": "vmware", "dateUpdated": "2026-02-25T19:33:14.729Z"}, "references": [{"name": "VMSA-2026-0001: VMware Aria Operations updates (includes CVE-2026-22720)", "tags": ["vendor-advisory"], "url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947"}, {"name": "VMware Aria Operations 8.18.6 Release Notes (resolves CVE-2026-22720)", "tags": ["release-notes"], "url": "https://techdocs.broadcom.com/us/en/vmware-cis/aria/aria-operations/8-18/vmware-aria-operations-8186-release-notes.html"}], "solutions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "<p>Apply the vendor patches listed in the 'Fixed Version' column of the Response Matrix of <a target=\"_blank\" rel=\"nofollow\" href=\"https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947\">VMSA-2026-0001</a>. Fixed versions include VMware Aria Operations 8.18.6 (for 8.x) and VMware Cloud Foundation Operations 9.0.2.0 (for 9.x).</p>"}], "value": "Apply the vendor patches listed in the 'Fixed Version' column of the Response Matrix of\u00a0 VMSA-2026-0001 https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947 . Fixed versions include VMware Aria Operations 8.18.6 (for 8.x) and VMware Cloud Foundation Operations 9.0.2.0 (for 9.x)."}], "source": {"discovery": "UNKNOWN"}, "title": "VMware Aria Operations stored cross-site scripting vulnerability", "x_generator": {"engine": "Vulnogram 0.5.0"}}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-02-25T20:55:20.600311Z", "id": "CVE-2026-22720", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "total"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-02-25T20:55:48.539Z"}}]}}