Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

38 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 11:20 a.m.8 views

CVE-2021-22049

The vSphere Web Client FLEX/Flash contains an SSRF Server Side Request Forgery vulnerability in the vSAN Web Client vSAN UI plug-in. A malicious actor with network access to port 443 on vCenter Server may exploit this issue by accessing a URL request outside of vCenter Server or accessing an...

9.8CVSS6.8AI score0.00655EPSS
Exploits0References1
GithubExploit
GithubExploitadded 2025/12/01 6:50 a.m.210 views

Exploit for CVE-2021-21980

CVE-2021-21980 Vulnerable Test Environment Overview Realis...

7.5CVSS7AI score0.08313EPSS
Exploits2
GithubExploit
GithubExploitadded 2025/11/27 5:16 a.m.254 views

Exploit for CVE-2021-21980

Clippy of the Dead - CVE-2021-21980 testing environment and Nucl...

7.5CVSS6.8AI score0.08313EPSS
Exploits2
EUVD
EUVDadded 2025/10/07 12:30 a.m.6 views

EUVD-2017-14045

Malware in sbrugna...

7.5CVSS7.6AI score0.00166EPSS
Exploits0References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2015-6865

Malware in sbrugna...

6.1CVSS6.3AI score0.00159EPSS
Exploits0References3
EUVD
EUVDadded 2025/10/03 8:7 p.m.4 views

EUVD-2021-9216

Malicious code in bioql PyPI...

9.8CVSS9.3AI score0.00655EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2025/05/22 7:12 p.m.11 views

CVE-2021-21980

The vSphere Web Client FLEX/Flash contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information...

7.5CVSS7AI score0.08313EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEVadded 2022/05/31 12:0 a.m.2 views

VulnCheck KEV: CVE-2021-21980

The vSphere Web Client FLEX/Flash contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information...

7.5CVSS7.4AI score0.08313EPSS
Exploits2References1
Tenable Nessus
Tenable Nessusadded 2021/12/02 12:0 a.m.206 views

VMware vCenter Server 6.5 / 6.7 Multiple Vulnerabilities (VMSA-2021-0027)

The version of VMware vCenter Server installed on the remote host is 6.5 prior to 6.5 U3r or 6.7 prior to 6.7 U3p. It is, therefore, affected by multiple vulnerabilities: - An arbitrary file read vulnerability exists in the vSphere web client. An unauthenticated, remote attacker can exploit this,...

9.8CVSS8.7AI score0.08313EPSS
Exploits2References3
The Hacker News
The Hacker Newsadded 2021/11/25 5:9 a.m.43 views

VMware Warns of Newly Discovered Vulnerabilities in vSphere Web Client

VMware has shipped updates to address two security vulnerabilities in vCenter Server and Cloud Foundation that could be abused by a remote attacker to gain access to sensitive information. The more severe of the issues concerns an arbitrary file read vulnerability in the vSphere Web Client. Track...

7.5CVSS9AI score0.08313EPSS
Exploits2
OSV
OSVadded 2021/11/24 5:15 p.m.2 views

CVE-2021-22049

The vSphere Web Client FLEX/Flash contains an SSRF Server Side Request Forgery vulnerability in the vSAN Web Client vSAN UI plug-in. A malicious actor with network access to port 443 on vCenter Server may exploit this issue by accessing a URL request outside of vCenter Server or accessing an...

9.8CVSS5.8AI score
Exploits0References1
NVD
NVDadded 2021/11/24 5:15 p.m.27 views

CVE-2021-21980

The vSphere Web Client FLEX/Flash contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information...

7.5CVSS0.08313EPSS
Exploits2References1
OSV
OSVadded 2021/11/24 5:15 p.m.1 views

CVE-2021-21980

The vSphere Web Client FLEX/Flash contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information...

7.5CVSS7.5AI score
Exploits0References1
VMware
VMwareadded 2021/11/23 12:0 a.m.40 views

VMware vCenter Server updates address arbitrary file read and SSRF vulnerabilities (CVE-2021-21980, CVE-2021-22049)

3a. vCenter Server updates address arbitrary file read vulnerability in the vSphere Web Client CVE-2021-21980 The vSphere Web Client FLEX/Flash contains an unauthorized arbitrary file read vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a...

7.5CVSS8.6AI score0.08313EPSS
Exploits2References9Affected Software2
VMware
VMwareadded 2021/11/21 12:0 a.m.111 views

VMSA-2021-0027:VMware vCenter Server updates address arbitrary file read and SSRF vulnerabilities

Advisory ID: VMSA-2021-0027.1 CVSSv3 Range: 6.5-7.5 Issue Date:2021-11-23 Updated On: 2022-02-15 CVEs: CVE-2021-21980, CVE-2021-22049 Synopsis: VMware vCenter Server updates address arbitrary file read and SSRF vulnerabilities CVE-2021-21980, CVE-2021-22049 RSS Feed Download PDF Download Text Fil...

9.8CVSS9.2AI score0.08313EPSS
Exploits2References23Affected Software2
GithubExploit
GithubExploitadded 2021/10/03 11:3 p.m.176 views

Exploit for Path Traversal in Vmware Cloud_Foundation

CVE-2021-21972 CVE-2021-21972 VMware vSphere Client Unauthor...

10CVSS9.3AI score0.93821EPSS
Exploits47
NVD
NVDadded 2021/09/22 7:15 p.m.20 views

CVE-2021-21992

The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing. A malicious actor with non-administrative user access to the vCenter Server vSphere Client HTML5 or vCenter Server vSphere Web Client FLEX/Flash may exploit this issue to create a denial-of-service...

6.8CVSS0.00926EPSS
Exploits0References1
NVD
NVDadded 2021/09/22 7:15 p.m.16 views

CVE-2021-21991

The vCenter Server contains a local privilege escalation vulnerability due to the way it handles session tokens. A malicious actor with non-administrative user access on vCenter Server host may exploit this issue to escalate privileges to Administrator on the vSphere Client HTML5 or vCenter Serve...

7.8CVSS0.00195EPSS
Exploits0References1
Prion
Prionadded 2021/09/22 7:15 p.m.22 views

Denial of service

The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing. A malicious actor with non-administrative user access to the vCenter Server vSphere Client HTML5 or vCenter Server vSphere Web Client FLEX/Flash may exploit this issue to create a denial-of-service...

6.8CVSS7.9AI score0.00926EPSS
Exploits0References1Affected Software2
Cvelist
Cvelistadded 2021/09/22 6:59 p.m.20 views

CVE-2021-21992

The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing. A malicious actor with non-administrative user access to the vCenter Server vSphere Client HTML5 or vCenter Server vSphere Web Client FLEX/Flash may exploit this issue to create a denial-of-service...

7.7AI score0.00926EPSS
Exploits0References1
Rows per page
Query Builder