Lucene search
VmwareCVELIST:CVE-2021-21980HistoryNov 24, 2021 - 4:32 p.m.
CVE-2021-21980
2021-11-2416:32:43
vmware
www.cve.org
8
vsphere
web client
unauthorized file read
vulnerability
network access
port 443
vcenter server
sensitive information
The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information.
CNA Affected
[
{
"product": "VMware vCenter Server and VMware Cloud Foundation",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "VMware vCenter Server (6.7 before 6.7 U3p and 6.5 before 6.5 U3r) and VMware Cloud Foundation 3.x"
}
]
}
]Related
prion
prion
Design/Logic Flaw
2021-11-24 17:15:00
cve
cve
CVE-2021-21980
2021-11-24 17:15:07
thn
thn
VMware Warns of Newly Discovered Vulnerabilities in vSphere Web Client
2021-11-25 05:09:00
nvd
nvd
CVE-2021-21980
2021-11-24 17:15:07
githubexploit
githubexploit
Exploit for CVE-2021-21980
2021-12-03 02:30:14
nessus
nessus
VMware vCenter Server 6.5 / 6.7 Multiple Vulnerabilities (VMSA-2021-0027)
2021-12-02 00:00:00
vmware
vmware
hivepro
hivepro
