CVE-2026-22720 - VMware Aria Operations stored cross-site scripting vulnerability

CVE ID : CVE-2026-22720 Published : Feb. 25, 2026, 8:23 p.m. | 33 minutes ago Description : VMware Aria Operations contains a stored cross-site scripting vulnerability. A malicious actor with privileges to create custom benchmarks may be able to inject script to perform administrative actions in VMware Aria Operations.  To remediate CVE-2026-22720, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' of  VMSA-2026-0001 . Severity: 8.0 | HIGH Visit the link for more details, such as CVSS details, affected products, timeline, and more...