Lucene search
PRIOn knowledge basePRION:CVE-2021-22008HistorySep 23, 2021 - 12:15 p.m.
Information disclosure
2021-09-2312:15:00
PRIOn knowledge base
www.prio-n.com
11
The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue by sending a specially crafted json-rpc message to gain access to sensitive information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| cloud_foundation | ge | 3.0 | |
| cloud_foundation | lt | 5.0 | |
| vcenter_server | eq | 6.5 | |
| vcenter_server | eq | 6.7 | |
| vcenter_server | eq | 7.0 |
Related
zdi
zdi
cve
cve
CVE-2021-22008
2021-09-23 12:15:07
nvd
nvd
CVE-2021-22008
2021-09-23 12:15:07
cnvd
cnvd
VMware vCenter Server Information Disclosure Vulnerability (CNVD-2021-74283)
2021-09-24 00:00:00
cvelist
cvelist
CVE-2021-22008
2021-09-23 11:41:28
nessus
nessus
VMware vCenter Server < 6.5 U3q Multiple Vulnerabilities (VMSA-2021-0020)
2021-09-22 00:00:00
VMware vCenter Server < 7.0 U2c Multiple Vulnerabilities (VMSA-2021-0020)
2021-09-22 00:00:00
VMware vCenter Server < 6.7 Multiple Vulnerabilities (VMSA-2021-0020)
2021-09-22 00:00:00
ibm
ibm
vmware
vmware
VMware vCenter Server updates address multiple security vulnerabilities
2021-09-21 00:00:00
VMware vCenter Server updates address multiple security vulnerabilities
2021-09-21 00:00:00
thn
thn
VMware Warns of Critical File Upload Vulnerability Affecting vCenter Server
2021-09-22 03:09:00