VMware View Planner Unauthenticated RCE CVE-2021-21978 Scanner

Details
Stay Up To Date
Asset Type

domain,ip,url

Need Membership

Yes

Asset Verify

Yes

API Support

Yes

Estimate Time (Second)

15

VMware View Planner Unauthenticated RCE CVE-2021-21978 Scanner Detail

There is a remote code execution vulnerability in VMware View Planner.

VMware View Planner 4.x prior to 4.6 Security Patch 1 contains a remote code execution vulnerability. Improper input validation and lack of authorization leading to arbitrary file upload in logupload web application. An unauthorized attacker with network access to View Planner Harness could upload and execute a specially crafted file leading to remote code execution within the logupload container.

Some Advice for Common Problems

You need to apply related fixes.

Need a Full Assesment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service