Get a Pentest and security assessment of your IT network.

News

VMware addresses SSRF flaw in vRealize Operations that allows stealing admin credentials

The most severe vulnerability, tracked as CVE-2021-21975, is a Server Side Request Forgery in vRealize Operations Manager API. A remote, unauthenticated attacker can exploit the vulnerability without user interaction to steal admin credentials from vulnerable installs. The company also addressed an arbitrary file write vulnerability that could allow an attacker to write files to arbitrary locations on the underlying photon operating system. The vulnerability was reported to the company by security researcher Egor Dimitrenko from Positive Technologies.”]

Source: https://securityaffairs.co/wordpress/116145/security/vmware-vrealize-operations-ssrf-flaw.html

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Terrorism WEEKLY DIGESTTHREAT INTELLIGENCE FEED 23rd Jul 2nd

News

Attacker.NET : Server Management & Security, Website Malware Removal & Website Security