vCenter Server VAPI Denial-of-Service Vulnerability

vCenter Server VAPI Denial-of-Service Vulnerability

CVE-2021-22019 · HIGH Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

The vCenter Server contains a denial-of-service vulnerability in VAPI (vCenter API) service. A malicious actor with network access to port 5480 on vCenter Server may exploit this issue by sending a specially crafted jsonrpc message to create a denial of service condition.

Learn more about our Cis Benchmark Audit For Server Software.