minute read
Share this article:
CVE-2021-21982 affects a platform designed to secure private clouds, and the virtual servers and workloads that they contain.
A critical security vulnerability in the VMware Carbon Black Cloud Workload appliance would allow privilege escalation and the ability to take over the administrative rights for the solution.
The bug (CVE-2021-21982) ranks 9.1 out of 10 on the CVSS vulnerability-severity scale.
The VMware Carbon Black Cloud Workload platform is designed to provide cybersecurity defense for virtual servers and workloads that are hosted on the VMware’s vSphere platform. vSphere is VMware’s cloud-computing virtualization platform.
The issue in the appliance stems from incorrect URL handling, according to VMware’s advisory issued last week.