Main Vulnerability Database SB2021080526

SB2021080526 - Multiple vulnerabilities in VMware Cloud Foundation (vIDM)

Published: August 5, 2021

Security Bulletin ID SB2021080526

Severity

High

Patch available

YES

Number of vulnerabilities 2

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 2 secuirty vulnerabilities.

1) Server-Side Request Forgery (SSRF) (CVE-ID: CVE-2021-22002)

The disclosed vulnerability allows a remote attacker to perform SSRF attacks.

The vulnerability exists due to insufficient validation of user-supplied input in the /cfg web app and diagnostic endpoints. A remote attacker can send a specially crafted HTTP request with a modified HTTP Host header to port 443/TCP and access the /cfg web application, available at port 8443. As a result, a remote non-authenticated attacker can perform SSRF attack and gain access to services in the internal network.

2) Unprotected primary channel (CVE-ID: CVE-2021-22003)

undefined

Remediation

Install update from vendor's website.

References

https://www.vmware.com/security/advisories/VMSA-2021-0016.html