vRealize Operations Manager API - Server Side Request Forgery (CVE-2021-21975)

Name: vRealize Operations Manager API - Server Side Request Forgery (CVE-2021-21975)
Published: 2021-09-15T00:00:00.000Z

Severity
CVE: CVE-2021-21975
CVSSv3 Score: 7.5
Exploitable with Sniper: No
Vulnerability description: vRealize Operations Manager is affected by a Server Side Request Forgery vulnerability, located on the /casa/nodes/thumbprints API endpoint. The root cause of this vulnerability is that the server did not properly restrict access to the vulnerable exposed endpoint. An attacker can perform this attack to steal admin credentials. Correlated with CVE-2021-21983, the attacker can achieve Remote Code Execution.
Risk description: The risk exists that a remote unauthenticated attacker can fully compromise the vRealize Operations Manager server in order to steal confidential information, install ransomware or pivot to the internal network.
Recommendation: Upgrade the vRealize Operations Manager to the latest version.
References: https://www.vmware.com/security/advisories/VMSA-2021-0004.html
Detectable with: Network Scanner
Vuln date: Mar 2021
Published at: Sep 2021
Updated at: Sep 2021
Software Type: Cloud management
Vendor: VMWare
Product: vRealize Operations Manager Server
Codename: Not available