Unrated severityNVD Advisory· Published Oct 13, 2021· Updated Aug 3, 2024
CVE-2021-22035
CVE-2021-22035
Description
VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user's environment.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: >=8.0, <8.6
Patches
Vulnerability mechanics
References
1- www.vmware.com/security/advisories/VMSA-2021-0022.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.