Home

CVE-2021-21980

Description

The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information.

Risk Information

Base Score
7.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
EPSS Score
Exploitation Probability
8.288

Associated Vulnerability

VulnerabilityOS Platform
Multiple Vulnerabilities are affected in VMware vCenter 6.5Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_1Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_1bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_1cWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_1dWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_1eWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_1gWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_2Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_2bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_2cWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_2dWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_2gWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_3Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_3dWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_3fWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_3kWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_3nWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_3pWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.5-update_3qWindows
Multiple Vulnerabilities are affected in VMware vCenter 6.7Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_1Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_1bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_2Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_2aWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_2cWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3aWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3fWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3gWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3jWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3lWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3mWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter 6.7-update_3nWindows
Vulnerabilities CVE-2021-21980,CVE-2022-31698 are affected in VMware vCenter 6.7-update_3oWindows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.5Windows
Multiple Vulnerabilities are affected in VMware vCenter Server 6.7Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_1Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_1bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_1cWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_1dWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_1eWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_1gWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_2Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_2bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_2cWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_2dWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_2gWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_3Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_3dWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_3fWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_3kWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_3nWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_3pWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.5-update_3qWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_1Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_1bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_2Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_2aWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_2cWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3Windows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3aWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3bWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3fWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3gWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3jWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3lWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3mWindows
Vulnerabilities CVE-2021-21980 are affected in VMware vCenter Server 6.7-update_3nWindows
Vulnerabilities CVE-2021-21980,CVE-2022-31698 are affected in VMware vCenter Server 6.7-update_3oWindows

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234