Lucene search

[email protected]CVE-2021-21985

HistoryMay 26, 2021 - 3:15 p.m.

CVE-2021-21985

2021-05-2615:15:00

CWE-20

[email protected]

web.nvd.nist.gov

1338

In Wild

222

cve-2021-21985

vsphere client

html5

remote code execution

vulnerability

virtual san health check

input validation

vcenter server

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.8 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.974 High

EPSS

Percentile

99.9%

JSON

The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server.

CPENameOperatorVersion
vmware:vcenter_servervmware vcenter servereq6.5
vmware:vcenter_servervmware vcenter servereq6.7
vmware:vcenter_servervmware vcenter servereq7.0
vmware:cloud_foundationvmware cloud foundationlt3.10.2.1
vmware:cloud_foundationvmware cloud foundationlt4.2.1

CPE	Name	Operator	Version
vmware:vcenter_server	vmware vcenter server	eq	6.5
vmware:vcenter_server	vmware vcenter server	eq	6.7
vmware:vcenter_server	vmware vcenter server	eq	7.0
vmware:cloud_foundation	vmware cloud foundation	lt	3.10.2.1
vmware:cloud_foundation	vmware cloud foundation	lt	4.2.1