CVE-2021-26987

Element Plug-in for vCenter Server incorporates SpringBoot Framework. SpringBoot Framework versions prior to 1.3.2 are susceptible to a vulnerability which when successfully exploited could lead to Remote Code Execution. All versions of Element Plug-in for vCenter Server, Management Services versions prior to 2.17.56 and Management Node versions through 12.2 contain vulnerable versions of SpringBoot Framework.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:vmware:spring_boot:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:a:netapp:element_plug-in_for_vcenter_server:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:management_services_for_element_software_and_netapp_hci:*:*:*:*:*:*:*:*
cpe:2.3:a:netapp:solidfire_\&_hci_management_node:*:*:*:*:*:*:*:*

History

07 Apr 2022, 15:02

Type Values Removed Values Added
CPE cpe:2.3:a:pivotal_software:spring_boot:*:*:*:*:*:*:*:* cpe:2.3:a:vmware:spring_boot:*:*:*:*:*:*:*:*

Information

Published : 2021-03-15 22:15

Updated : 2024-02-04 21:23


NVD link : CVE-2021-26987

Mitre link : CVE-2021-26987

CVE.ORG link : CVE-2021-26987


JSON object : View

Products Affected

vmware

  • spring_boot

netapp

  • element_plug-in_for_vcenter_server
  • management_services_for_element_software_and_netapp_hci
  • solidfire_\&_hci_management_node