CVE-2021-21975CISA KEV: Actively Exploited

VMware Server Side Request Forgery in vRealize Operations Manager API

Published Jan 18, 2022·Updated Jan 18, 2022

Description

Server Side Request Forgery (SSRF) in vRealize Operations Manager API prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API to perform a SSRF attack to steal administrative credentials.

Public Exploits & PoCs8 found

References

View on NVD Search GitHub Search Google

Get alerted for CVEs like this

Register your stack and get notified within minutes when a matching CVE drops.

Start monitoring free