PT-2021-2518 · Vmware · Vrealize Operations

Egor Dimitrenko

Published

2021-03-30

Updated

2022-02-01

CVE-2021-21983

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:S/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions vRealize Operations versions prior to 8.4

Description The issue is related to an uncontrolled upload of dangerous file types in the vRealize Operations API interface. This could allow a remote attacker to upload malicious files. An authenticated malicious actor with network access to the vRealize Operations Manager API may be able to write files to arbitrary locations on the underlying photon operating system.

Recommendations For versions prior to 8.4, update to version 8.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the vRealize Operations Manager API to minimize the risk of exploitation. Avoid using the API for file uploads until the issue is resolved.

Exploit

Fix

Unrestricted File Upload

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-434

Related Identifiers

BDU:2021-01919

CVE-2021-21983

Affected Products

Vrealize Operations

PT-2021-2518 · Vmware · Vrealize Operations

CVE-2021-21983

Weakness Enumeration

Related Identifiers

Affected Products

References · 12