April 28, 2025
Proactive Defense: The Importance of Incident Response Planning in Cybersecurity
Severity
Medium
Analysis Summary
CVE-2021-22033
A malicious actor with administrative access to vRealize Operations can enumerate internal IPs and internal ports.
CVE-2021-22035
An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in the user’s environment.
CVE-2021-22036
A malicious actor may be able to redirect victim to an attacker-controlled domain due to improper path handling in vRealize Orchestrator leading to sensitive information disclosure.
Impact
- Arbitrary Code Execution
- Exposure of Sensitive Data
- Unauthorized Access
Affected Vendors
- VMware
Affected Products
- VMware vRealize Operations
- VMware Cloud Foundation
- vRealize Suite Lifecycle Manager
- VMware vRealize Log Insight
Remediation
Refer to VMware Security Advisory for patch, upgrade, or suggested workaround information.
CVE-2021-22033
CVE-2021-22035
CVE-2021-22036
