PT-2026-47260 · Vmware · Vcf Operations+2

Published

2026-06-08

·

Updated

2026-06-08

·

CVE-2026-41723

CVSS v3.1

8.0

High

VectorAV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
VMware Cloud Foundation Operations contains multiple stored cross-site scripting vulnerabilities.A malicious actor with privileges to create policies, views or text-widgets may be able to inject scripts to perform administrative actions in VMware Cloud Foundation Operations.

Fix

Related Identifiers

CVE-2026-41723

Affected Products

Vcf Operations
Vmware Aria Operations
Vmware Telco Cloud Platform