CVE-2021-22048

moderate-risk
Published 2021-11-10

The vCenter Server contains a privilege escalation vulnerability in the IWA (Integrated Windows Authentication) authentication mechanism. A malicious actor with non-administrative access to vCenter Server may exploit this issue to elevate privileges to a higher privileged group.

Do I need to act?

~
1.4% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10 High
NETWORK / LOW complexity

Affected Products (4)

Affected Vendors

Vmware

References (6)

Release Notes http://packetstormsecurity.com/files/167733/VMware-Security-Advisory-2022-0025.2...
Release Notes http://packetstormsecurity.com/files/167795/VMware-Security-Advisory-2021-0025.3...
Patch https://www.vmware.com/security/advisories/VMSA-2021-0025.html
Release Notes http://packetstormsecurity.com/files/167733/VMware-Security-Advisory-2022-0025.2...
Release Notes http://packetstormsecurity.com/files/167795/VMware-Security-Advisory-2021-0025.3...
Patch https://www.vmware.com/security/advisories/VMSA-2021-0025.html
44
/ 100
moderate-risk
Severity 30/34 · Critical
Exploitability 4/34 · Minimal
Exposure 10/34 · Low