THREATOPS
THREAT OPSCVEs › CVE-2021-21985

CVE-2021-21985 — VMware vCenter Server Improper Input Validation Vulnerability

CISA KEVExploited: confirmedVMware

VMware vSphere Client contains an improper input validation vulnerability in the Virtual SAN Health Check plug-in, which is enabled by default in vCenter Server, which allows for remote code execution.

Vulnerability details