CVE-2021-21985

CVE Database · CVE-2021-21985

CVE-2021-21985

· CRITICALAnalyzed

CVSS v3.1

9.8

EPSS

100.00%

Published

May 26, 2021

Modified

Oct 30, 2025

CISA Known Exploited Vulnerability

Added: 2021-11-03 · Due: 2021-11-17

Apply updates per vendor instructions.

Public PoC / Exploit (10)

All weaponized →

NucleiNuclei detection template TrickestTrickest PoC index GitHub PoCalt3kx/CVE-2021-21985_PoC★213 GitHub PoCxnianq/cve-2021-21985_exp★115 GitHub PoCtestanull/Project_CVE-2021-21985_PoC★29 GitHub PoCsknux/CVE-2021-21985_PoC★3 GitHub PoConSec-fr/CVE-2021-21985-Checker★2 GitHub PoCdaedalus/CVE-2021-21985★2 GitHub PoCbigbroke/CVE-2021-21985★1 GitHub PoChaidv35/CVE-2021-21985★1

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The vSphere Client (HTML5) contains a remote code execution vulnerability due to lack of input validation in the Virtual SAN Health Check plug-in which is enabled by default in vCenter Server. A malicious actor with network access to port 443 may exploit this issue to execute commands with unrestricted privileges on the underlying operating system that hosts vCenter Server.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Weaknesses (CWE)

CWE-918CWE-20CWE-470CWE-918

Affected Products (53)

vmware · vcenter_servervulnerable

References (7)

http://packetstormsecurity.com/files/162812/VMware-Security-Advisory-2021-0010.html

Third Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/163487/VMware-vCenter-Server-Virtual-SAN-Health-Check-Remote-Code-Execution.html

ExploitThird Party AdvisoryVDB Entry

https://www.vmware.com/security/advisories/VMSA-2021-0010.html

Vendor Advisory

http://packetstormsecurity.com/files/162812/VMware-Security-Advisory-2021-0010.html

Third Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/163487/VMware-vCenter-Server-Virtual-SAN-Health-Check-Remote-Code-Execution.html

KEV Catalog EPSS Scores Vendors All CVEs