CVE-2021-21972: VMware vCenter Server RCE

Score: 9.8
CRITICAL
Published: 2021-02-23Affected: VMware vCenter Server 6.5, 6.7, 7.0CWE-22 β†—

Can VMware vCenter be compromised remotely?

An unauthenticated file upload vulnerability in the vSphere Client (HTML5). Attackers can upload a specially crafted file to the vCenter Server, leading to remote code execution with unrestricted privileges.

Impact & Exploitation

Over 6,700 vCenter servers exposed on the internet. Mass exploitation by ransomware groups and APTs. Full compromise of enterprise virtualization infrastructure.

Related Resources

πŸ” Related CWE Entries

πŸ“– Security Guides

πŸ›‘οΈ Notable Vulnerabilities

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS9.8
SeverityCRITICAL
CWECWE-22
Published2021-02-23

Tags

vmwarevcenterrcefile-upload

Quick Links

Is your system affected?

Precogs AI detects VMware vCenter Server RCE in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2021-21972 VMware vCenter Server RCE don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo