CVE-2021-21985

Warnung

Exploit

EPSS 94.37%
Veröffentlicht 26.05.2021 15:15:07
Zuletzt bearbeitet 02.04.2025 16:53:15
Quelle security@vmware.com
Teams Watchlist Login
Unerledigt Login

The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server.

Betroffene Produkte Warnungen 1 Metriken 4 CWE 3 Referenzen 6

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

VMware ≫ Vcenter Server Version6.5 Update-

VMware ≫ Vcenter Server Version6.5 Updatea

VMware ≫ Vcenter Server Version6.5 Updateb

VMware ≫ Vcenter Server Version6.5 Updatec

VMware ≫ Vcenter Server Version6.5 Updated

VMware ≫ Vcenter Server Version6.5 Updatee

VMware ≫ Vcenter Server Version6.5 Updatef

VMware ≫ Vcenter Server Version6.5 Updateupdate1

VMware ≫ Vcenter Server Version6.5 Updateupdate1b

VMware ≫ Vcenter Server Version6.5 Updateupdate1c

VMware ≫ Vcenter Server Version6.5 Updateupdate1d

VMware ≫ Vcenter Server Version6.5 Updateupdate1e

VMware ≫ Vcenter Server Version6.5 Updateupdate1g

VMware ≫ Vcenter Server Version6.5 Updateupdate2

VMware ≫ Vcenter Server Version6.5 Updateupdate2b

VMware ≫ Vcenter Server Version6.5 Updateupdate2c

VMware ≫ Vcenter Server Version6.5 Updateupdate2d

VMware ≫ Vcenter Server Version6.5 Updateupdate2g

VMware ≫ Vcenter Server Version6.5 Updateupdate3

VMware ≫ Vcenter Server Version6.5 Updateupdate3d

VMware ≫ Vcenter Server Version6.5 Updateupdate3f

VMware ≫ Vcenter Server Version6.5 Updateupdate3k

VMware ≫ Vcenter Server Version6.5 Updateupdate3n

VMware ≫ Vcenter Server Version6.7 Update-

VMware ≫ Vcenter Server Version6.7 Updatea

VMware ≫ Vcenter Server Version6.7 Updateb

VMware ≫ Vcenter Server Version6.7 Updated

VMware ≫ Vcenter Server Version6.7 Updateupdate1

VMware ≫ Vcenter Server Version6.7 Updateupdate1b

VMware ≫ Vcenter Server Version6.7 Updateupdate2

VMware ≫ Vcenter Server Version6.7 Updateupdate2a

VMware ≫ Vcenter Server Version6.7 Updateupdate2c

VMware ≫ Vcenter Server Version6.7 Updateupdate3

VMware ≫ Vcenter Server Version6.7 Updateupdate3a

VMware ≫ Vcenter Server Version6.7 Updateupdate3b

VMware ≫ Vcenter Server Version6.7 Updateupdate3f

VMware ≫ Vcenter Server Version6.7 Updateupdate3g

VMware ≫ Vcenter Server Version6.7 Updateupdate3j

VMware ≫ Vcenter Server Version6.7 Updateupdate3l

VMware ≫ Vcenter Server Version6.7 Updateupdate3m

VMware ≫ Vcenter Server Version7.0 Update-

VMware ≫ Vcenter Server Version7.0 Updatea

VMware ≫ Vcenter Server Version7.0 Updateb

VMware ≫ Vcenter Server Version7.0 Updatec

VMware ≫ Vcenter Server Version7.0 Updated

VMware ≫ Vcenter Server Version7.0 Updateupdate1

VMware ≫ Vcenter Server Version7.0 Updateupdate1a

VMware ≫ Vcenter Server Version7.0 Updateupdate1c

VMware ≫ Vcenter Server Version7.0 Updateupdate1d

VMware ≫ Vcenter Server Version7.0 Updateupdate2

VMware ≫ Vcenter Server Version7.0 Updateupdate2a

VMware ≫ Cloud Foundation Version >= 3.0 < 3.10.2.1

VMware ≫ Cloud Foundation Version >= 4.0 < 4.2.1

03.11.2021: CISA Known Exploited Vulnerabilities (KEV) Catalog

VMware vCenter Server Improper Input Validation Vulnerability

Schwachstelle

VMware vSphere Client contains an improper input validation vulnerability in the Virtual SAN Health Check plug-in, which is enabled by default in vCenter Server, which allows for remote code execution.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	94.37%	0.999

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C
134c704f-9b21-4f2e-91b3-4a467353bcc0	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-470 Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')

The product uses external input with reflection to select which classes or code to use, but it does not sufficiently prevent the input from selecting improper classes or code.

CWE-918 Server-Side Request Forgery (SSRF)

The web server receives a URL or similar request from an upstream component and retrieves the contents of this URL, but it does not sufficiently ensure that the request is being sent to the expected destination.

http://packetstormsecurity.com/files/162812/VMware-Security-Advisory-2021-0010.html

Third Party Advisory

VDB Entry

http://packetstormsecurity.com/files/163487/VMware-vCenter-Server-Virtual-SAN-Health-Check-Remote-Code-Execution.html

Third Party Advisory

Exploit

VDB Entry

https://www.vmware.com/security/advisories/VMSA-2021-0010.html

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-21985

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-21985

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-21985

EUVD