4 matches found
Security Bulletin: Multiple Vulnerabilities in VMware ESXi affect IBM Cloud Pak System (CVE-2021-21994, CVE-2021-21995)
Summary Vulnerabilties in VMware ESXi affect IBM Cloud Pak System. IBM Cloud Pak System has addressed these vulnerabilities. Vulnerability Details CVEID: CVE-2021-21994 DESCRIPTION: VMware ESXI could allow a remote attacker to bypass security restrictions, caused by improper authentication in SFC...
CVE-2021-21994
CVE-2021-21994 affects VMware ESXi via SFCB authentication bypass. A remote attacker with network access to port 5989 can bypass SFCB authentication by a crafted request. VMware's VMSA-2021-0014 provides patched versions: ESXi 7.0 (ESXi70U2-17630552), ESXi 6.7 (ESXi670-202103101-SG), and ESXi 6.5...
CVE-2021-21994
SFCB Small Footprint CIM Broker as used in ESXi has an authentication bypass vulnerability. A malicious actor with network access to port 5989 on ESXi may exploit this issue to bypass SFCB authentication by sending a specially crafted request...
VMSA-2021-0014:VMware ESXi updates address authentication and denial of service vulnerabilities
Advisory ID: VMSA-2021-0014.1 CVSSv3 Range: 5.3-7.0 Issue Date:2021-07-13 Updated On: 2021-08-24 CVEs: CVE-2021-21994, CVE-2021-21995 Synopsis: VMware ESXi updates address authentication and denial of service vulnerabilities CVE-2021-21994, CVE-2021-21995 RSS Feed Download PDF Download Text File...