Lucene search

CVE-2021-21985

🗓️ 26 May 2021 00:00:00Reported by AttackerKBType

The vSphere Client (HTML5) has a remote code execution vulnerability through the Virtual SAN Health Check plug-in enabled by default

Reporter	Title	Published	Views	Family All 174
seebug.org	VMware vCenter Server远程代码执行漏洞（CVE-2021-21985）	26 May 202100:00	–	seebug
Rapid7 Blog	CVE-2021-21985: What you need to know about the latest critical vCenter Server vulnerability	26 May 202118:57	–	rapid7blog
Rapid7 Blog	Critical vCenter Server File Upload Vulnerability (CVE-2021-22005)	21 Sep 202119:55	–	rapid7blog
Rapid7 Blog	Metasploit Wrap-Up	12 Mar 202121:45	–	rapid7blog
Rapid7 Blog	VMware vCenter Server CVE-2021-21972 Remote Code Execution Vulnerability: What You Need to Know	24 Feb 202122:22	–	rapid7blog
Rapid7 Blog	Metasploit Wrap-Up	16 Jul 202119:47	–	rapid7blog
Rapid7 Blog	What’s New in InsightVM and Nexpose: Q3 2022 in Review	28 Sep 202214:11	–	rapid7blog
The Hacker News	ALERT: Critical RCE Bug in VMware vCenter Server Under Active Attack	5 Jun 202110:58	–	thn
The Hacker News	Critical RCE Vulnerability Found in VMware vCenter Server — Patch Now!	26 May 202104:57	–	thn
The Hacker News	Hacktivist Group Twelve Targets Russian Entities with Destructive Cyber Attacks	21 Sep 202414:39	–	thn

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
vmware	www.vmware.com/security/advisories/VMSA-2021-0010.html
packetstormsecurity	www.packetstormsecurity.com/files/162812/VMware-Security-Advisory-2021-0010.html
packetstormsecurity	www.packetstormsecurity.com/files/163487/VMware-vCenter-Server-Virtual-SAN-Health-Check-Remote-Code-Execution.html

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 May 2021 00:00Current

8.8High risk

Vulners AI Score8.8

CVSS210

CVSS34.9 - 9.8

EPSS0.974

SSVC