CVE-2021-22014

Name of the Vulnerable Software and Affected Versions vCenter Server (affected versions not specified)

Description The issue is related to an authenticated code execution vulnerability in VAMI (Virtual Appliance Management Infrastructure) of the vCenter Server. An authenticated VAMI user with network access to port 5480 on vCenter Server may exploit this issue to execute code on the underlying operating system that hosts vCenter Server. The vulnerability is associated with incorrect code generation management. Exploitation may allow a remote attacker to execute arbitrary code in the operating system.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.