VMware vCenter Server Vulnerability CVE-2021-22005 Under Active Exploit

Original release date: September 24, 2021

On September 21, 2021, VMware disclosed that its vCenter Server is affected by an arbitrary file upload vulnerability—CVE-2021-22005—in the Analytics service. A malicious cyber actor with network access to port 443 can exploit this vulnerability to execute code on vCenter Server.

On September 24, 2021, VMware confirmed reports that CVE-2021-22005 is being exploited in the wild. Security researchers are also reporting mass scanning for vulnerable vCenter Servers and publicly available exploit code. Due to the availability of exploit code, CISA expects widespread exploitation of this vulnerability.

To mitigate CVE-2021-22005, CISA strongly urges critical infrastructure entities and other organizations with affected vCenter Server versions to take the following actions.

Upgrade to a fixed version as quickly as possible. See VMware Security Advisory VMSA-2021-0020 for patching information.
Apply the temporary workaround provided by VMware, if unable to upgrade to a fixed version immediately. See VMware’s workaround instructions for CVE-2021-22005, supplemental blog post, and frequently asked questions for additional information.

This product is provided subject to this Notification and this Privacy & Use policy.

Source link

admin

Next Google Releases Security Updates for Chrome »

Previous « Apple Releases Security Updates

This website uses cookies.

VMware vCenter Server Vulnerability CVE-2021-22005 Under Active Exploit

Recent Posts

Continuing Threats to Home Users

Cross-Domain Vulnerability in Outlook Express MHTML Protocol Handler

Summary of Windows Security Updates for April 2004

Multiple Vulnerabilities in Microsoft Products

Cisco IOS SNMP Message Handling Vulnerability

Vulnerabilities in TCP