CVE-2021-21975

⚠ KEVEPSS 94.4%

VMware Server Side Request Forgery in vRealize Operations Manager API

Added to CISA KEV: 1/18/2022

Description

Server Side Request Forgery (SSRF) in vRealize Operations Manager API prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API to perform a SSRF attack to steal administrative credentials.

Affected packages (0)

No package mapping in OSV.