CVE-2021-21975
CVE-2021-21975
In short
A flaw in vRealize Operations Manager's API allows attackers with network access to make the server itself perform requests to internal systems, potentially stealing admin credentials. This matters because it bypasses normal security controls by exploiting the server's trusted position.
Technical detail
A Server Side Request Forgery (SSRF) vulnerability in vRealize Operations Manager API prior to version 8.4 permits unauthenticated or low-privileged network-accessible attackers to forge requests from the server to internal resources, enabling credential theft and lateral movement. The vulnerability stems from insufficient validation of user-supplied URLs in API parameters.
Summary generated and translated by AI from the official description.
Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975) prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack to steal administrative credentials.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
n/a · VMware vRealize Operationspublic PoCs found — 9
githubgithub.com/rabidwh0re/REALITY_SMASHER★ 37githubgithub.com/GuayoyoCyber/CVE-2021-21975★ 27githubgithub.com/Al1ex/CVE-2021-21975★ 13githubgithub.com/Henry4E36/VMWare-vRealize-SSRF★ 12githubgithub.com/murataydemir/CVE-2021-21975★ 4githubgithub.com/Vulnmachines/VMWare-CVE-2021-21975★ 3githubgithub.com/dorkerdevil/CVE-2021-21975★ 2githubgithub.com/DarkFunct/exp_hub★ 0cve_referencepacketstormsecurity.com/files/162349/VMware-vRealize-Operations-Manager-Server-Side-Request-Forgery-Code-Execution.htmlunverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →