Vulnerabilities > CVE-2021-22033 - Server-Side Request Forgery (SSRF) vulnerability in VMWare products

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

HIGH

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

NVD

Published: 2021-10-13

Updated: 2021-10-19

Summary

Releases prior to VMware vRealize Operations 8.6 contain a Server Side Request Forgery (SSRF) vulnerability.

Part	Description	Count
Application	Vmware Vmware Vrealize Suite Lifecycle Manager 8.0 Vmware Vrealize Suite Lifecycle Manager 8.0.1 Vmware Vrealize Suite Lifecycle Manager 8.1 Vmware Vrealize Suite Lifecycle Manager 8.2 Vmware Cloud Foundation 3.0.1 Vmware Cloud Foundation 3.0.1.1 Vmware Cloud Foundation 3.5 Vmware Cloud Foundation 3.5.1 Vmware Cloud Foundation 3.7 Vmware Cloud Foundation 3.7.1 Vmware Cloud Foundation 3.7.2 Vmware Cloud Foundation 3.8 Vmware Cloud Foundation 3.8.1 Vmware Cloud Foundation 3.9 Vmware Cloud Foundation 3.9.1 Vmware Cloud Foundation 3.10 Vmware Cloud Foundation 3.10.1 Vmware Cloud Foundation 3.10.1.1 Vmware Cloud Foundation 3.10.1.2 Vmware Cloud Foundation 3.10.2.1 Vmware Cloud Foundation 3.10.2.2 Vmware Cloud Foundation 3.11 Vmware Cloud Foundation 3.11.0.1 Vmware Cloud Foundation 4.0 Vmware Cloud Foundation 4.0.1 Vmware Cloud Foundation 4.1 Vmware Cloud Foundation 4.1.0.1 Vmware Cloud Foundation 4.2 Vmware Cloud Foundation 4.2.1 Vmware Cloud Foundation 4.3 Vmware Cloud Foundation 4.3.1 Vmware Vrealize Operations 7.0.0 Vmware Vrealize Operations 7.0.0.11287810	39