Security Advisory

CVE-2021-21993

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-23 11:37:24

Last updated 2024-08-03 18:30:23

Assigner vmware

State PUBLISHED

Description

The vCenter Server contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in vCenter Server Content Library. An authorised user with access to content library may exploit this issue by sending a POST request to vCenter Server leading to information disclosure.

← Browse all CVEs View on cve.org ↗