CVE-2021-21980
First published: Wed Nov 24 2021(Updated: )
The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information.
Credit: security@vmware.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| VMware Cloud Foundation | =3.0 | |
| VMware vCenter Server | =6.5 | |
| VMware vCenter Server | =6.5-update_1 | |
| VMware vCenter Server | =6.5-update_1b | |
| VMware vCenter Server | =6.5-update_1c | |
| VMware vCenter Server | =6.5-update_1d | |
| VMware vCenter Server | =6.5-update_1e | |
| VMware vCenter Server | =6.5-update_1g | |
| VMware vCenter Server | =6.5-update_2 | |
| VMware vCenter Server | =6.5-update_2b | |
| VMware vCenter Server | =6.5-update_2c | |
| VMware vCenter Server | =6.5-update_2d | |
| VMware vCenter Server | =6.5-update_2g | |
| VMware vCenter Server | =6.5-update_3 | |
| VMware vCenter Server | =6.5-update_3d | |
| VMware vCenter Server | =6.5-update_3f | |
| VMware vCenter Server | =6.5-update_3k | |
| VMware vCenter Server | =6.5-update_3n | |
| VMware vCenter Server | =6.5-update_3p | |
| VMware vCenter Server | =6.5-update_3q | |
| VMware vCenter Server | =6.7 | |
| VMware vCenter Server | =6.7-update_1 | |
| VMware vCenter Server | =6.7-update_1b | |
| VMware vCenter Server | =6.7-update_2 | |
| VMware vCenter Server | =6.7-update_2a | |
| VMware vCenter Server | =6.7-update_2c | |
| VMware vCenter Server | =6.7-update_3 | |
| VMware vCenter Server | =6.7-update_3a | |
| VMware vCenter Server | =6.7-update_3b | |
| VMware vCenter Server | =6.7-update_3f | |
| VMware vCenter Server | =6.7-update_3g | |
| VMware vCenter Server | =6.7-update_3j | |
| VMware vCenter Server | =6.7-update_3l | |
| VMware vCenter Server | =6.7-update_3m | |
| VMware vCenter Server | =6.7-update_3n | |
| VMware vCenter Server | =6.7-update_3o |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
- agent/tags
- agent/event
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/remedy
- agent/last-modified-date
- agent/softwarecombine
- agent/first-publish-date
- collector/nvd-index
- agent/software-canonical-lookup
- collector/mitre-cve
- source/MITRE
- vendor/vmware
- canonical/vmware cloud foundation
- version/vmware cloud foundation/3.0
- canonical/vmware vcenter server
- version/vmware vcenter server/6.5
- version/vmware vcenter server/6.5-update_1
- version/vmware vcenter server/6.5-update_1b
- version/vmware vcenter server/6.5-update_1c
- version/vmware vcenter server/6.5-update_1d
- version/vmware vcenter server/6.5-update_1e
- version/vmware vcenter server/6.5-update_1g
- version/vmware vcenter server/6.5-update_2
- version/vmware vcenter server/6.5-update_2b
- version/vmware vcenter server/6.5-update_2c
- version/vmware vcenter server/6.5-update_2d
- version/vmware vcenter server/6.5-update_2g
- version/vmware vcenter server/6.5-update_3
- version/vmware vcenter server/6.5-update_3d
- version/vmware vcenter server/6.5-update_3f
- version/vmware vcenter server/6.5-update_3k
- version/vmware vcenter server/6.5-update_3n
- version/vmware vcenter server/6.5-update_3p
- version/vmware vcenter server/6.5-update_3q
- version/vmware vcenter server/6.7
- version/vmware vcenter server/6.7-update_1
- version/vmware vcenter server/6.7-update_1b
- version/vmware vcenter server/6.7-update_2
- version/vmware vcenter server/6.7-update_2a
- version/vmware vcenter server/6.7-update_2c
- version/vmware vcenter server/6.7-update_3
- version/vmware vcenter server/6.7-update_3a
- version/vmware vcenter server/6.7-update_3b
- version/vmware vcenter server/6.7-update_3f
- version/vmware vcenter server/6.7-update_3g
- version/vmware vcenter server/6.7-update_3j
- version/vmware vcenter server/6.7-update_3l
- version/vmware vcenter server/6.7-update_3m
- version/vmware vcenter server/6.7-update_3n
- version/vmware vcenter server/6.7-update_3o