VMware vCenter Server file upload vulnerability (CVE-2021-22005)

September 21, 2021 Duncan 3122 Views 0 Comments CVE-2021-22005, File Upload Vulnerability, VMware, VMware vCenter Server 0 min read

CVE number = CVE-2021-22005

The vCenter Server contains an arbitrary file upload vulnerability in the Analytics service.

A malicious actor with network access to port 443 on vCenter Server may exploit this issue to execute code on vCenter Server by uploading a specially crafted file.

To remediate CVE-2021-22005 apply the relevant updates.

This issue does not affect vCenter Server 6.5.

A supplemental blog post was created for additional clarification. Please see: https://via.vmw.com/vmsa-2021-0020-faq

Duncan

Duncan is a technology professional with over 20 years experience of working in various IT roles. He has a interest in cyber security, and has a wide range of other skills in radio, electronics and telecommunications.

VMware vCenter Server file upload vulnerability (CVE-2021-22005)

Like this:

Related Posts

Duncan

Leave a ReplyCancel reply

Share this:

Like this:

Related Posts

Duncan

Leave a ReplyCancel reply