CVE-2021-21985
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2021-21985
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Vmware vSphere Client 输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Vmware vSphere Client是美国威睿(Vmware)公司的一个应用软件。提供虚拟化管理。 Vmware vSphere Client 存在输入验证错误漏洞,该漏洞由于vCenter Server默认启用的虚拟SAN健康检查插件缺乏输入验证,导致攻击者可以在底层操作系统上以不受限制的权限执行命令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | VMware vCenter Server and VMware Cloud Foundation | VMware vCenter Server (7.x before 7.0 U2b, 6.7 before 6.7 U3n, 6.5 before 6.5 U3p) and VMware Cloud Foundation (4.x before 4.2.1, 3.x before 3.10.2.1) | - |
II. Public POCs for CVE-2021-21985
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | Multiple vulnerabilities in the vSphere Client (HTML5) were privately reported to VMware. Updates and workarounds are available to address these vulnerabilities in affected VMware products. | https://github.com/bigbroke/CVE-2021-21985 | POC Details |
| 2 | None | https://github.com/alt3kx/CVE-2021-21985_PoC | POC Details |
| 3 | CVE-2021-21985 Checker. | https://github.com/onSec-fr/CVE-2021-21985-Checker | POC Details |
| 4 | This script check the CVE-2021-21985 vulnerability and patch on vCenter Server. | https://github.com/mauricelambert/CVE-2021-21985 | POC Details |
| 5 | cve-2021-21985 exploit | https://github.com/xnianq/cve-2021-21985_exp | POC Details |
| 6 | CVE-2021-21985 vmware 6.7-9.8 RCE | https://github.com/daedalus/CVE-2021-21985 | POC Details |
| 7 | None | https://github.com/testanull/Project_CVE-2021-21985_PoC | POC Details |
| 8 | None | https://github.com/haiclover/CVE-2021-21985 | POC Details |
| 9 | cve-2021-21985 powershell poc | https://github.com/aristosMiliaressis/CVE-2021-21985 | POC Details |
| 10 | VMWARE VCENTER SERVER VIRTUAL SAN HEALTH CHECK PLUG-IN RCE (CVE-2021-21985) | https://github.com/sknux/CVE-2021-21985_PoC | POC Details |
| 11 | None | https://github.com/haidv35/CVE-2021-21985 | POC Details |
| 12 | The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server. | https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-21985.yaml | POC Details |
| 13 | vmware vCenter unauth RCE cve-2021-21985 | https://github.com/chaitin/xray-plugins/blob/main/poc/manual/vmware-vcenter-cve-2021-21985-rce.yml | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2021-21985
请登录查看更多情报信息。
- https://www.vmware.com/security/advisories/VMSA-2021-0010.htmlx_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2021-21985
Same Patch Batch · n/a · 2021-05-26 · 92 CVEs total
| CVE-2021-29252 | 5.4 MEDIUM | RSA Archer 跨站脚本漏洞 |
| CVE-2021-29253 | 5.1 MEDIUM | RSA Archer 安全漏洞 |
| CVE-2021-22746 | Triconex Model 3009 MP 代码问题漏洞 | |
| CVE-2021-22731 | Schneider Electric 授权问题漏洞 | |
| CVE-2021-22732 | Schneider Electric homeLYnk和spaceLYnk 安全漏洞 | |
| CVE-2021-22736 | Schneider Electric homeLYnk和spaceLYnk 路径遍历漏洞 | |
| CVE-2021-22734 | Schneider Electric spaceLYnk和homeLYnk 数据伪造问题漏洞 | |
| CVE-2021-22735 | Schneider Electric homeLYnk和spaceLYnk 数据伪造问题漏洞 | |
| CVE-2021-22733 | Schneider Electric homeLYnk和spaceLYnk 安全漏洞 | |
| CVE-2021-22743 | Triconex Model 3009 MP 代码问题漏洞 | |
| CVE-2021-22744 | Triconex Model 3009 MP 代码问题漏洞 | |
| CVE-2021-22745 | Triconex Model 3009 MP 代码问题漏洞 | |
| CVE-2021-22741 | Schneider Electric EcoStruxure Geo SCADA Expert 安全漏洞 | |
| CVE-2021-22747 | Triconex Model 3009 MP 代码问题漏洞 | |
| CVE-2020-22021 | FFmpeg 缓冲区错误漏洞 | |
| CVE-2021-25643 | Couchbase Server 安全漏洞 | |
| CVE-2020-22024 | FFmpeg 安全漏洞 | |
| CVE-2020-22026 | FFmpeg 安全漏洞 | |
| CVE-2021-3548 | dmg2img 缓冲区错误漏洞 | |
| CVE-2020-22028 | FFmpeg 安全漏洞 |
Showing top 20 of 92 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8276
bettercap MySQL Server mysql_server.go integer coercion - CVE-2026-8275
bettercap zerogod IPP Service zerogod_ipp_primitives.go ippR - CVE-2026-8270
Open5GS SMF ogs_nas_parse_qos_rules denial of service - CVE-2026-8269
Open5GS SMF smf_nsmf_handle_create_sm_context denial of serv - CVE-2026-8268
Open5GS SMF OpenAPI_list_create denial of service
V. Comments for CVE-2021-21985
No comments yet