The vCenter Server contains multiple denial-of-service vulnerabilities in VAPI (vCenter API) service. A malicious actor with network access to port 443 on vCenter Server may exploit these issues to create a denial of service condition due to excessive memory consumption by VAPI service.
CPE | Name | Operator | Version |
---|---|---|---|
cloud_foundation | ge | 3.0 | |
cloud_foundation | lt | 5.0 | |
vcenter_server | eq | 6.7 | |
vcenter_server | eq | 7.0 |