Security restrictions bypass in vCenter Server - CVE-2021-22048
Published: November 10, 2021 / Updated: November 23, 2021
vCenter Server
Detailed vulnerability description
The vulnerability allows a remote user to escalate privileges on the system.
The vulnerability exists due to an error in the IWA (Integrated Windows Authentication) authentication mechanism. A remote authenticated user can escalate privileges on the system.
How to mitigate CVE-2021-22048
Cybersecurity Help is currently unaware of any official solution to address this vulnerability.