← voltar
CVE-2021-21993

CVE-2021-21993

EPSS 0.9%
The vCenter Server contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in vCenter Server Content Library. An authorised user with access to content library may exploit this issue by sending a POST request to vCenter Server leading to information disclosure.
Produtos afetados
n/a · VMware vCenter Server, VMware Cloud Foundation

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.vmware.com/security/advisories/VMSA-2021-0020.html