VMbeware

CVE-2021-21985, CVE-2021-21986, VMSA-2021-0010

Code execution flaw in vCenter is exploited to install a web shell on unpatched systems.

Information

Remote code execution flaw in vCenter Server poses "serious" risk to data centers.

ArsTechnica

“Oh, one of my honeypots got popped with CVE-2021-21985 while I was working, I haz web shell.”

Twitter

Links

VMware Advisory

Link

VMware Advisory FAQ

Link

CVE

The vSphere Client (HTML5) contains a remote code execution vulnerability


Link

Tenable

CVE-2021-21985: Critical VMware vCenter Server Remote Code Execution


Link

NIST

Lack of input validation in the Virtual SAN Health Check plug-in


Link

Rapid7

What you need to know about the latest critical vCenter Server vulnerability


Link

  1. Vulnerability Details : CVE-2021-21985

    Link
  2. Patch Info: RCE vulnerability in vCenter CVE-2021-21985

    Link
  3. Mass scanning activity detected.

    Link
  4. CVE-2021-21985: Patch this Trending VMware Vulnerability

    Link


VMware is a registered trademark or trademark of VMware, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies.