CVE-2021-22026

Published: 2021-08-30T18:15Z

Last Modified: 2024-11-21T05:49Z

Source: MITRE CVE List

License: MITRE-CVE-TOS

The vRealize Operations Manager API (8.x prior to 8.5) contains a Server Side Request Forgery in an end point. An unauthenticated malicious actor with network access to the vRealize Operations Manager API can perform a Server Side Request Forgery attack leading to information disclosure. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt