THREATOPS
THREAT OPSCVEs › CVE-2021-21972

CVE-2021-21972 — VMware vCenter Server Remote Code Execution Vulnerability

CISA KEVExploited: confirmedVMware

VMware vCenter Server vSphere Client contains a remote code execution vulnerability in a vCenter Server plugin which allows an attacker with network access to port 443 to execute commands with unrestricted privileges on the underlying operating system.

Vulnerability details