Security flaw tracked as CVE-2021-22005 impacts all vCenter Server 6.7 and 7.0 deployments with default configurations. The flaw was reported by George Noseevich and Sergey Gerasimov of SolidLab LLC. Unauthenticated attackers can remotely exploit it in low complexity attacks without requiring user interaction. The vulnerability can be used by anyone who can reach vCenter servers over the network to gain access, regardless of the configuration settings of vCenter server, according to the company.”]