CVE-2021-21973

MEDIUM

Description

The vSphere Client (HTML5) contains an SSRF (Server Side Request Forgery) vulnerability due to improper validation of URLs in a vCenter Server plugin. A malicious actor with network access to port 443 may exploit this issue by sending a POST request to vCenter Server plugin leading to information disclosure. This affects: VMware vCenter Server (7.x before 7.0 U1c, 6.7 before 6.7 U3l and 6.5 before 6.5 U3n) and VMware Cloud Foundation (4.x before 4.2 and 3.x before 3.10.1.2).

References

https://www.vmware.com/security/advisories/VMSA-2021-0002.html

Details

Source: MITRE

Published: 2021-02-24

Updated: 2021-03-04

Type: CWE-918

Risk Information

CVSS v2.0

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

CVSS v3.0

Base Score: 5.3

Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Impact Score: 1.4

Exploitability Score: 3.9

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:*

cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:-:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:a:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:b:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:c:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:d:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:e:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:f:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u1d:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u1e:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u1g:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u2:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u2b:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u2c:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u2d:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u2g:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u3:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u3d:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u3f:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.5:u3k:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:-:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:a:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:b:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:d:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u1:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u1b:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u2:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u2a:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u2c:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u3:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u3a:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u3b:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u3f:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u3g:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:6.7:u3j:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:7.0:-:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:7.0:a:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:7.0:b:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:7.0:c:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:7.0:d:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:7.0:u1:*:*:*:*:*:*

cpe:2.3:a:vmware:vcenter_server:7.0:u1a:*:*:*:*:*:*

Tenable Plugins

View all (1 total)

IDNameProductFamilySeverity
146826VMware vCenter Server 6.5 / 6.7 / 7.0 Multiple Vulnerabilities (VMSA-2021-0002)NessusMisc.
critical