Vulnerability identifier: #VU53595

Vulnerability risk: Critical

CVSSv3.1: 9.4 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:O/RC:C]

CVE-ID: CVE-2021-21985

CWE-ID: CWE-20

Exploitation vector: Network

Exploits in database: 12

• November 11, 2021
  • CVE-2021-21985_PoC (VMWARE VCENTER SERVER VIRTUAL SAN HEALTH CHECK PLUG-IN RCE (CVE-2021-21985) ) [Github]
• July 12, 2021
  • CVE-2021-21985 (cve-2021-21985 powershell xploits for leaving off the land 'n shit) [Github]
  • VMware vCenter Server Virtual SAN Health Check Plugin RCE [Metasploit]
• July 8, 2021
  • CVE-2021-21985 () [Github]
• June 6, 2021
  • Project_CVE-2021-21985_PoC () [Github]
  • CVE-2021-21985 (CVE-2021-21985 vmware 6.7-9.8 RCE) [Github]
• June 3, 2021
  • cve-2021-21985_exp (cve-2021-21985 exploit) [Github]
  • CVE-2021-21985 (CVE-2021-21985 VMware vCenter Server远程代码执行漏洞 EXP (更新可回显EXP)) [Github]
• June 1, 2021
  • CVE-2021-21985-Checker (CVE-2021-21985 Checker.) [Github]
  • CVE-2021-21985_PoC () [Github]
  • CVE-2021-21985 (This script check the CVE-2021-21985 vulnerability and patch on vCenter Server.) [Github]
• May 31, 2021
  • CVE-2021-21985 () [Github]

Impact: Code execution

Vulnerable software:
vCenter Server
Server applications / Virtualization software
Cloud Foundation
Client/Desktop applications / Virtualization software

Vendor: VMware, Inc