Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2021-21972
HistoryFeb 24, 2021 - 5:15 p.m.

Remote code execution

2021-02-2417:15:00
PRIOn knowledge base
www.prio-n.com
8

9.8 High

AI Score

Confidence

High

0.973 High

EPSS

Percentile

99.9%

JSON

The vSphere Client (HTML5) contains a remote code execution vulnerability in a vCenter Server plugin. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server. This affects VMware vCenter Server (7.x before 7.0 U1c, 6.7 before 6.7 U3l and 6.5 before 6.5 U3n) and VMware Cloud Foundation (4.x before 4.2 and 3.x before 3.10.1.2).

Related

zdt 4
githubexploit 27
nessus 2
cisa_kev 1
wallarmlab 2
packetstorm 4
nuclei 1
nvd 1
attackerkb 3
cve 1
cvelist 1
trellix 2
seebug 1
checkpoint_advisories 1
ibm 1
rapid7blog 5
thn 5
exploitdb 2
cisa 1
vmware 1
threatpost 1
qualysblog 2
securelist 1
ics 1
zdt
zdt
VMware vCenter Server 7.0 - Unauthenticated File Upload Exploit
2021-03-01 00:00:00
VMware vCenter Server File Upload / Remote Code Execution Exploit
2021-03-08 00:00:00
VMware vCenter 6.5 / 7.0 Remote Code Execution Exploit
2021-02-24 00:00:00
githubexploit
githubexploit
Exploit for Missing Authentication for Critical Function in Vmware Vcenter Server
2021-03-01 14:14:01
Exploit for Missing Authentication for Critical Function in Vmware Vcenter Server
2021-02-27 10:27:04
Exploit for Improper Privilege Management in Vmware Cloud Foundation
2021-02-25 13:04:37
nessus
nessus
VMware vCenter Server RCE (direct check)
2021-02-25 00:00:00
VMware vCenter Server 6.5 / 6.7 / 7.0 Multiple Vulnerabilities (VMSA-2021-0002)
2021-02-25 00:00:00
cisa_kev
cisa_kev
VMware vCenter Server Remote Code Execution Vulnerability
2021-11-03 00:00:00
wallarmlab
wallarmlab
Why WAFs can’t catch VMware CVE-2021-21972 Remote Code Execution Exploit?
2021-03-08 20:22:27
Web vulnerabilities exploit weekly digest #1. March 8-15th 2021. VMware vCenter and Apache OFBiz RCE.
2021-03-16 18:22:00
packetstorm
packetstorm
VMware vCenter Server 7.0 Arbitrary File Upload
2021-03-01 00:00:00
VMware vCenter 6.5 / 7.0 Remote Code Execution Proof Of Concept
2021-02-24 00:00:00
VMware vCenter Server File Upload / Remote Code Execution
2021-03-08 00:00:00
nuclei
nuclei
VMware vSphere Client (HTML5) - Remote Code Execution
2021-02-25 00:37:02
nvd
nvd
CVE-2021-21972
2021-02-24 17:15:15
attackerkb
attackerkb
VMware vSphere Client Unauth Remote Code Execution Vulnerability β€” CVE-2021-21972
2021-02-24 00:00:00
CVE-2021-22005
2021-09-23 00:00:00
CVE-2021-21985
2021-05-26 00:00:00
cve
cve
CVE-2021-21972
2021-02-24 17:15:15
cvelist
cvelist
CVE-2021-21972
2021-02-24 16:42:05
trellix
trellix
Global ESXiArgs ransomware attack on the back of a two-year-old vulnerability
2023-02-09 00:00:00
Global ESXiArgs ransomware attack on the back of a two-year-old vulnerability
2023-02-09 00:00:00
seebug
seebug
VMware vCenter ServerθΏœη¨‹δ»£η ζ‰§θ‘ŒζΌζ΄žοΌˆCVE-2021-21985οΌ‰
2021-05-26 00:00:00
checkpoint_advisories
checkpoint_advisories
VMware vSphere Client Remote Code Execution (CVE-2021-21972; CVE-2021-21973)
2021-02-28 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in VMware affect IBM Cloud Pak System
2021-10-05 12:18:32
rapid7blog
rapid7blog
CVE-2021-21985: What you need to know about the latest critical vCenter Server vulnerability
2021-05-26 18:57:20
Metasploit Wrap-Up
2021-03-12 21:45:48
Critical vCenter Server File Upload Vulnerability (CVE-2021-22005)
2021-09-21 19:55:35
thn
thn
ALERT: Critical RCE Bug in VMware vCenter Server Under Active Attack
2021-06-05 10:58:00
Necro Python Malware Upgrades With New Exploits and Crypto Mining Capabilities
2021-06-03 17:01:00
Critical RCE Vulnerability Found in VMware vCenter Server β€” Patch Now!
2021-05-26 04:57:00
exploitdb
exploitdb
VMware vCenter Server 7.0 - Remote Code Execution (RCE) (Unauthenticated)
2021-06-24 00:00:00
VMware vCenter Server 7.0 - Unauthenticated File Upload
2021-03-01 00:00:00
cisa
cisa
VMware Releases Multiple Security Updates
2021-02-24 00:00:00
vmware
vmware
VMware ESXi and vCenter Server updates address multiple security vulnerabilities (CVE-2021-21972, CVE-2021-21973, CVE-2021-21974)
2021-02-23 00:00:00
threatpost
threatpost
VMWare Patches Critical RCE Flaw in vCenter Server
2021-02-24 17:14:55
qualysblog
qualysblog
CISA Alert: Top 15 Routinely Exploited Vulnerabilities
2022-05-06 12:19:24
Qualys Response to CISA Alert: Binding Operational Directive 22-01
2021-11-09 06:15:01
securelist
securelist
IT threat evolution Q1 2021. Non-mobile statistics
2021-05-31 10:00:05
ics
ics
2021 Top Routinely Exploited Vulnerabilities
2022-04-28 12:00:00

9.8 High

AI Score

Confidence

High

0.973 High

EPSS

Percentile

99.9%

JSON
Related for PRION:CVE-2021-21972
zdt4githubexploit27nessus2cisa_kev1wallarmlab2packetstorm4nuclei1nvd1attackerkb3cve1cvelist1trellix2seebug1checkpoint_advisories1ibm1rapid7blog5thn5exploitdb2cisa1vmware1threatpost1qualysblog2securelist1ics1