2 matches found
CVE-2021-22018
CVE-2021-22018 affects VMware vCenter Server via an arbitrary file deletion vulnerability in the vSphere Life-cycle Manager plug-in. A remote attacker can delete non-critical files by targeting port 9087. This is documented in multiple sources (e.g., RH-CVE-2021-22018 and VMware advisory VMSA-202...
VMware vCenter Server < 7.0 U2d Multiple Vulnerabilities (VMSA-2021-0020)
The version of VMware vCenter Server installed on the remote host is prior to 7.0 U2d. It is, therefore, affected by multiple vulnerabilities: - An unauthenticated API endpoint vulnerability exists in the vCenter Server Content Library. An unauthenticated, remote attacker can exploit this to...