CVE-2021-22005
VMware vCenter Server File Upload Vulnerability
CVSS
—
Sin CVSS
EPSS
100.0%
p100
KEV
SÍ
3 nov 2021
Exploit Today
80
0-100
Publicado: — · Última mod.: —
100.0%EPSS · 30 días100.0%
2026-06-302026-07-16
Producto
VMware / vCenter Server
Vulnerabilidad
VMware vCenter Server File Upload Vulnerability
Añadido a KEV
3 nov 2021
Remediar antes de
17 nov 2021
Uso conocido en ransomware
Sí
Descripción resumida
VMware vCenter Server contains a file upload vulnerability in the Analytics service that allows a user with network access to port 443 to execute code.
Acción requerida
Apply updates per vendor instructions.
Notas
https://nvd.nist.gov/vuln/detail/CVE-2021-22005
CVECVSSEPSSKEVRExplotTítuloVis.
CVE-2021-21985—100.0%
KEV—80VMware vCenter Server Improper Input Validation Vulnerability—CVE-2021-21972—99.9%
KEV—80VMware vCenter Server Remote Code Execution Vulnerability—CVE-2023-34048—99.9%
KEV—80VMware vCenter Server Out-of-Bounds Write Vulnerability—CVE-2020-3952—99.8%
KEV—80VMware vCenter Server Information Disclosure Vulnerability—CVE-2024-38812—98.9%
KEV—80VMware vCenter Server Heap-Based Buffer Overflow Vulnerability—CVE-2021-22017—98.7%
KEV—80VMware vCenter Server Improper Access Control—