THREAT OPS › CVEs › CVE-2021-21972
CVE-2021-21972 — VMware vCenter Server Remote Code Execution Vulnerability
VMware vCenter Server vSphere Client contains a remote code execution vulnerability in a vCenter Server plugin which allows an attacker with network access to port 443 to execute commands with unrestricted privileges on the underlying operating system.
Vulnerability details
- Affected productsvCenter Server
- KEV remediation due2021-11-17