Unrated severityCISA KEVNVD Advisory· Published Sep 23, 2021· Updated Oct 21, 2025

CVE-2021-22017

Description

Rhttproxy as used in vCenter Server contains a vulnerability due to improper implementation of URI normalization. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to bypass proxy leading to internal endpoints being accessed.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.vmware.com/security/advisories/VMSA-2021-0020.htmlmitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.060
exploit	0.000
kev	0.120
patch	0.000
ransomware	0.000