CVE-2021-21985: Critical VMware vCenter Server Remote Code Execution

by CIRT Team

07 Jun 2021

in CVE, Security Advisories & Alerts

No Comments

1854

Description:

The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server.

Impacted Products:
VMware vCenter Server (vCenter Server)
VMware Cloud Foundation (Cloud Foundation)

CVSSv3 Score: 9.8 CRITICAL

Impact:
A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server.

Mitigation: Updates are available. Please see the references or vendor advisory for more information.

Reference:
https://www.vmware.com/security/advisories/VMSA-2021-0010.html

info@cirt.gov.bd

+88-02-550071 83-86

CVE-2021-21985: Critical VMware vCenter Server Remote Code Execution

by CIRT Team

07 Jun 2021

in CVE, Security Advisories & Alerts

No Comments

1854

CIRT Team

Recommended Posts

Active Exploitation of Critical F5 BIG – IP Vulnerability (CVE–2023-46747) Uncovered in Bangladesh

Emerging Threat_Stealer Malware (Lumma C2) Campaign with fake CAPTCHA pages

Detection of Fog Ransomware Footprint in Cyber Space of Bangladesh

Subscribe here

Important links

MEMBER OF: