VMware Patches 19 Vulnerabilities, Including One Critical Flaw (CVE-2021-22005)

On September 21, VMware published VMSA-2021-0020, a security advisory that addresses 19 vulnerabilities in its vCenter Server solution. Out of the 19 vulnerabilities, only one vulnerability, CVE-2021-22005, was marked as critical. It is a file upload vulnerability in vCenter Server’s analytics service. This is the second critical flaw in VMware’s vCenter Server/vSphere solutions in the last four months. In May, VMWare published an advisory that included a fix for CVE-2021-21985, a remote code execution vulnerability in VMware’s vSphere Client.  

At the time this post was published, there was no proof-of-concept exploit for CVE-2021-22005. However, we anticipate that because of the simplicity for exploitation of this vulnerability, attackers capable of accessing vCenter Server within a network or remotely via the internet will begin to conduct reconnaissance and launch attacks very soon.

For more information about the vulnerabilities, including the availability of patches and Tenable product coverage, please visit our blog.