3 matches found
VMware Tanzu Application Service for VMs updates address a denial-of-service vulnerability (CVE-2021-22101)
3a. VMware Tanzu Application service for VMs updates address a denial-of-service vulnerability CVE-2021-22101 VMware Tanzu Application Service for VMs uses Cloud Controller CAPI from Cloud Foundry which is vulnerable to an unauthenticated denial-of-serviceDoS vulnerability. VMware has evaluated...
CVE-2021-22101
creationtimestamp| type| source ---|---|--- 2021-10-27 18:16:07+00:00| seen| https://t.me/cibsecurity/31275...
CVE-2021-22101
CVE-2021-22101 affects Cloud Foundry Cloud Controller prior to 1.118.0. It enables unauthenticated DoS by sending REST HTTP requests with label_selectors on multiple V3 endpoints, generating an enormous SQL query that can render the ccdb unavailable. Affected products include CAPI (pre-1.118.0) a...