vCenter Server File Path Traversal Vulnerability: Information Disclosure in Appliance Management API

vCenter Server File Path Traversal Vulnerability: Information Disclosure in Appliance Management API

CVE-2021-22013 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

The vCenter Server contains a file path traversal vulnerability leading to information disclosure in the appliance management API. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information.

Learn more about our Cis Benchmark Audit For Server Software.