CVE-2021-22016

Name of the Vulnerable Software and Affected Versions vCenter Server (affected versions not specified)

Description The issue is related to a reflected cross-site scripting vulnerability in the vCenter Server due to a lack of input sanitization. This allows an attacker to execute malicious scripts by tricking a victim into clicking a malicious link. The vulnerability can be exploited by a remote attacker to redirect users to a malicious webpage.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.