Security Advisory

CVE-2021-21992

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-22 18:59:15

Last updated 2024-08-03 18:30:23

Assigner vmware

State PUBLISHED

Description

The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing. A malicious actor with non-administrative user access to the vCenter Server vSphere Client (HTML5) or vCenter Server vSphere Web Client (FLEX/Flash) may exploit this issue to create a denial-of-service condition on the vCenter Server host.

← Browse all CVEs View on cve.org ↗