Lucene search
VmwareCVELIST:CVE-2021-21978HistoryMar 03, 2021 - 5:44 p.m.
CVE-2021-21978
2021-03-0317:44:25
vmware
www.cve.org
8
vmware
view planner
security patch
remote code execution
input validation
authorization
arbitrary file upload
VMware View Planner 4.x prior to 4.6 Security Patch 1 contains a remote code execution vulnerability. Improper input validation and lack of authorization leading to arbitrary file upload in logupload web application. An unauthorized attacker with network access to View Planner Harness could upload and execute a specially crafted file leading to remote code execution within the logupload container.
CNA Affected
[
{
"product": "VMware View Planner",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "VMware View Planner 4.x prior to 4.6 Security Patch 1"
}
]
}
]Related
prion
prion
Remote code execution
2021-03-03 18:15:00
attackerkb
attackerkb
CVE-2021-21978
2021-03-03 00:00:00
nuclei
nuclei
VMware View Planner <4.6 SP1- Remote Code Execution
2021-03-05 08:27:05
nvd
nvd
CVE-2021-21978
2021-03-03 18:15:14
githubexploit
githubexploit
cve
cve
CVE-2021-21978
2021-03-03 18:15:14
checkpoint_advisories
checkpoint_advisories
VMware View Planner Remote Code Execution (CVE-2021-21978)
2021-03-14 00:00:00
zdt
zdt
VMware View Planner 4.6 Remote Code Execution Exploit
2021-03-19 00:00:00
metasploit
metasploit
VMware View Planner Unauthenticated Log File Upload RCE
2021-03-14 05:59:47
packetstorm
packetstorm
VMware View Planner 4.6 Remote Code Execution
2021-03-19 00:00:00
vmware
vmware
rapid7blog
rapid7blog
Metasploit Wrap-Up
2021-03-26 17:36:13
wallarmlab
wallarmlab