CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21982

VMware Carbon Black Cloud Workload appliance 1.0.0 and 1.01 has an authentication bypass vulnerability that may allow a malicious actor with network access to the administrative interface of the VMware Carbon Black Cloud Workload appliance to obtain a valid authentication token. Successful exploitation of this issue would result in the attacker being able to view and alter administrative configuration settings.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.8%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

Products affected by CVE-2021-21982

Vmware » Carbon Black Cloud Workload » Version: N/A

cpe:2.3:a:vmware:carbon_black_cloud_workload:-
Vmware » Carbon Black Cloud Workload » Version: 1.0

cpe:2.3:a:vmware:carbon_black_cloud_workload:1.0
Vmware » Carbon Black Cloud Workload » Version: 1.0.1

cpe:2.3:a:vmware:carbon_black_cloud_workload:1.0.1
Linux » Linux Kernel » Version: N/A

cpe:2.3:o:linux:linux_kernel:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-21982

Products

Pricing

Contact Us