Unrated severityCISA KEVNVD Advisory· Published Mar 31, 2021· Updated Oct 21, 2025
CVE-2021-21975
CVE-2021-21975
Description
Server Side Request Forgery in vRealize Operations Manager API (CVE-2021-21975) prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack to steal administrative credentials.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- VMware/vRealize Operations Manager APIdescription
- Range: <8.4
Patches
Vulnerability mechanics
References
2News mentions
0No linked articles in our index yet.