Security Advisory

CVE-2021-22008

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-09-23 11:41:28

Last updated 2024-08-03 18:30:23

Assigner vmware

State PUBLISHED

Description

The vCenter Server contains an information disclosure vulnerability in VAPI (vCenter API) service. A malicious actor with network access to port 443 on vCenter Server may exploit this issue by sending a specially crafted json-rpc message to gain access to sensitive information.

← Browse all CVEs View on cve.org ↗