VMware vCenter Server Vulnerabilities

Fix VMware vCenter Server on Windows Server

9 entries · Windows Server · Sorted by severity

Showing 1–9 of 9 results

	Severity	Title	CVE ID	CVSS	Exploit	Reboot	Script
Active exploitation	CRITICALCISA KEV	VMware vCenter Server < 7.0 — RCEVMware vCenter Server Remote Code Execution — VMSA-2021-0010 (CVE-2021-21985)VMware vCenter Server	CVE-2021-21985+1 more	9.8	In the wild	Reboot Required	Script
Active exploitation	CRITICALCISA KEV	VMware vCenter Server < 7.0 — RCEVMware vCenter Server Analytics Service Arbitrary File Upload — VMSA-2021-0020 (CVE-2021-22005)VMware vCenter Server	CVE-2021-22005	9.8	In the wild	Reboot Required	Script
Active exploitation	CRITICALCISA KEV	VMware vCenter Server Remote Code Execution Vulnerability (CVE-2021-21972)VMware vCenter Server	CVE-2021-21972	9.8	In the wild	Reboot Required	Script
Active exploitation	CRITICALCISA KEV	VMware vCenter Server Heap-Based Buffer Overflow Vulnerability (CVE-2024-38812)VMware vCenter Server	CVE-2024-38812	9.8	In the wild	Reboot Required	Script
Active exploitation	CRITICALCISA KEV	VMware vCenter Server Out-of-Bounds Write Vulnerability (CVE-2023-34048)VMware vCenter Server	CVE-2023-34048	9.8	In the wild	Reboot Required	Script
Active exploitation	CRITICALCISA KEV	VMware vCenter Server Information Disclosure Vulnerability (CVE-2020-3952)VMware vCenter Server	CVE-2020-3952	9.8	In the wild	Reboot Required	Script
Active exploitation	HIGHCISA KEV	VMware vCenter Server Privilege Escalation Vulnerability (CVE-2024-38813)VMware vCenter Server	CVE-2024-38813	7.5	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	VMware vCenter Server Incorrect Default File Permissions Vulnerability (CVE-2022-22948)VMware vCenter Server	CVE-2022-22948	6.5	In the wild	Reboot Required	Script
Active exploitation	MEDIUMCISA KEV	VMware vCenter Server Improper Access Control (CVE-2021-22017)VMware vCenter Server	CVE-2021-22017	5.3	In the wild	Reboot Required	Script