Nutanix · Prism Central · CVE-2024-12223
Name of the Vulnerable Software and Affected Versions:
Prism Central versions prior to 2024.3.1
Description:
Prism Central is susceptible to a stored cross-site scripting attack through the Events component. This allows an attacker to hijack a victim user’s session and perform actions within that user’s security context.
Recommendations:
Update Prism Central to version 2024.3.1 or later.