CVE-2021-21985

GPTKB entity

Statements (20)
Predicate Object
gptkbp:instanceOf gptkb:security
gptkbp:access No
gptkbp:affects gptkb:VMware_Cloud_Foundation
gptkb:VMware_vCenter_Server
gptkbp:CVSSv3_Score 9.8
gptkbp:describes A remote code execution vulnerability in the vSphere Client (HTML5) component of VMware vCenter Server.
gptkbp:exploits Yes
gptkbp:hasCWE gptkb:CWE-20
gptkbp:hasSeverity Critical
https://www.w3.org/2000/01/rdf-schema#label CVE-2021-21985
gptkbp:impact Allows unauthenticated remote attackers to execute commands with unrestricted privileges on the underlying operating system.
gptkbp:mainVendors gptkb:VMware
gptkbp:patchedBy Yes
gptkbp:publicationDate 2021-05-25
gptkbp:vectorFor gptkb:network_protocol
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
gptkbp:vulnerableTo gptkb:CVE-2021-21985
Remote Code Execution
gptkbp:bfsParent gptkb:APT3
gptkbp:bfsLayer 7