VMWare Products Multiple Vulnerabilities
Release Date:
27 Sep 2021
5473
Views
RISK: High Risk
TYPE: Operating Systems - VM Ware
Multiple vulnerabilities were identified in VMware products, a remote attacker could exploit some of these vulnerabilities to trigger denial of service, elevation of privilege, remote code execution, security restriction bypass and sensitive information disclosure.
Note:
CVE-2021-22005 is being exploited in the wild.
Impact
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Information Disclosure
System / Technologies affected
- VMware vCenter Server version 6.5, 6.7 and 7.0
- VMware Cloud Foundation (vCenter Server) version 3.x and 4.x
Solutions
Before installation of the software, please visit the vendor web-site for more details.
- Apply fixes issued by the vendor:
https://www.vmware.com/security/advisories/VMSA-2021-0020.html
Vulnerability Identifier
- CVE-2021-21991
- CVE-2021-21992
- CVE-2021-21993
- CVE-2021-22005
- CVE-2021-22006
- CVE-2021-22007
- CVE-2021-22008
- CVE-2021-22009
- CVE-2021-22010
- CVE-2021-22011
- CVE-2021-22012
- CVE-2021-22013
- CVE-2021-22014
- CVE-2021-22015
- CVE-2021-22016
- CVE-2021-22017
- CVE-2021-22018
- CVE-2021-22019
- CVE-2021-22020
Source
Related Link
Share with