cvelistv5 - cve-2021-22035

CVE-2021-22035 (GCVE-0-2021-22035)

Vulnerability from cvelistv5 – Published: 2021-10-13 15:50 – Updated: 2024-08-03 18:30

Summary

VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user's environment.

Severity ?

No CVSS data available.

CWE

CSV injection vulnerability in Log Insight

Assigner

vmware

References

URL

Tags

https://www.vmware.com/security/advisories/VMSA-2…

x_refsource_MISC

Impacted products

	Vendor	Product	Version
	n/a	VMware vRealize Log Insight	Affected: VMware vRealize Log Insight (8.x prior to 8.6)

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T18:30:24.009Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "VMware vRealize Log Insight",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "VMware vRealize Log Insight (8.x prior to 8.6)"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "CSV injection vulnerability in Log Insight",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2021-10-13T15:50:54",
        "orgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
        "shortName": "vmware"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security@vmware.com",
          "ID": "CVE-2021-22035",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "VMware vRealize Log Insight",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "VMware vRealize Log Insight (8.x prior to 8.6)"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CSV injection vulnerability in Log Insight"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html",
              "refsource": "MISC",
              "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "dcf2e128-44bd-42ed-91e8-88f912c1401d",
    "assignerShortName": "vmware",
    "cveId": "CVE-2021-22035",
    "datePublished": "2021-10-13T15:50:54",
    "dateReserved": "2021-01-04T00:00:00",
    "dateUpdated": "2024-08-03T18:30:24.009Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.0.0\", \"versionEndIncluding\": \"4.3.1\", \"matchCriteriaId\": \"67763E17-BABE-4A25-95BC-2B5F1666705C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vmware:vrealize_log_insight:*:*:*:*:*:*:*:*\", \"versionStartExcluding\": \"8.0.0\", \"versionEndExcluding\": \"8.60\", \"matchCriteriaId\": \"BECE8925-3981-4FB9-979E-CDFC1A55A13F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:vmware:vrealize_suite_lifecycle_manager:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.0.0\", \"versionEndIncluding\": \"8.2\", \"matchCriteriaId\": \"61B2C07D-4AD4-458B-86CA-FB2CA45A8EA7\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment.\"}, {\"lang\": \"es\", \"value\": \"VMware vRealize Log Insight (versiones 8.x anteriores a 8.6) contienen una vulnerabilidad de inyecci\\u00f3n de CSV (Valores Separados por Comas) en la funci\\u00f3n interactive analytics export. Un actor malicioso autenticado con privilegios no administrativos puede ser capaz de insertar datos no confiables antes de exportar una hoja CSV mediante Log Insight que podr\\u00eda ser ejecutada en el entorno del usuario\"}]",
      "id": "CVE-2021-22035",
      "lastModified": "2024-11-21T05:49:28.620",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N\", \"baseScore\": 4.3, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"LOW\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 1.4}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:S/C:N/I:P/A:N\", \"baseScore\": 4.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.0, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2021-10-13T16:15:07.690",
      "references": "[{\"url\": \"https://www.vmware.com/security/advisories/VMSA-2021-0022.html\", \"source\": \"security@vmware.com\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://www.vmware.com/security/advisories/VMSA-2021-0022.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "security@vmware.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-74\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2021-22035\",\"sourceIdentifier\":\"security@vmware.com\",\"published\":\"2021-10-13T16:15:07.690\",\"lastModified\":\"2024-11-21T05:49:28.620\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment.\"},{\"lang\":\"es\",\"value\":\"VMware vRealize Log Insight (versiones 8.x anteriores a 8.6) contienen una vulnerabilidad de inyecci\u00f3n de CSV (Valores Separados por Comas) en la funci\u00f3n interactive analytics export. Un actor malicioso autenticado con privilegios no administrativos puede ser capaz de insertar datos no confiables antes de exportar una hoja CSV mediante Log Insight que podr\u00eda ser ejecutada en el entorno del usuario\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N\",\"baseScore\":4.3,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:N/I:P/A:N\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-74\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.0.0\",\"versionEndIncluding\":\"4.3.1\",\"matchCriteriaId\":\"67763E17-BABE-4A25-95BC-2B5F1666705C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vmware:vrealize_log_insight:*:*:*:*:*:*:*:*\",\"versionStartExcluding\":\"8.0.0\",\"versionEndExcluding\":\"8.60\",\"matchCriteriaId\":\"BECE8925-3981-4FB9-979E-CDFC1A55A13F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:vmware:vrealize_suite_lifecycle_manager:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.0\",\"versionEndIncluding\":\"8.2\",\"matchCriteriaId\":\"61B2C07D-4AD4-458B-86CA-FB2CA45A8EA7\"}]}]}],\"references\":[{\"url\":\"https://www.vmware.com/security/advisories/VMSA-2021-0022.html\",\"source\":\"security@vmware.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://www.vmware.com/security/advisories/VMSA-2021-0022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}"
  }
}

GHSA-P728-XW8R-5F6M

Vulnerability from github – Published: 2022-05-24 19:17 – Updated: 2022-05-24 19:17

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2021-22035"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-74"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2021-10-13T16:15:00Z",
    "severity": "MODERATE"
  },
  "details": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment.",
  "id": "GHSA-p728-xw8r-5f6m",
  "modified": "2022-05-24T19:17:23Z",
  "published": "2022-05-24T19:17:23Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2021-22035"
    },
    {
      "type": "WEB",
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

CNVD-2022-23514

Vulnerability from cnvd - Published: 2022-03-29

Title

VMware vRealize Log Insight CSV注入漏洞漏洞

Description

VMware vRealize Log Insight是美国威睿（Vmware）公司的一套集中式日志管理解决方案。该产品支持日志整理和日志分析等功能。 VMware vRealize Log Insight存在CSV注入漏洞漏洞，允许经过身份验证的攻击者可利用漏洞通过CSV表嵌入不受信任的数据。

Severity

中

Patch Name

VMware vRealize Log Insight CSV注入漏洞漏洞的补丁

Patch Description

VMware vRealize Log Insight是美国威睿（Vmware）公司的一套集中式日志管理解决方案。该产品支持日志整理和日志分析等功能。 VMware vRealize Log Insight存在CSV注入漏洞漏洞，允许经过身份验证的攻击者可利用漏洞通过CSV表嵌入不受信任的数据。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已发布升级补丁以修复漏洞，补丁获取链接： https://www.vmware.com/security/advisories/VMSA-2021-0022.html。

Reference

https://nvd.nist.gov/vuln/detail/CVE-2021-22035

Impacted products

Name
VMware vRealize Log Insight 8.*，<8.6

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2021-22035"
    }
  },
  "description": "VMware vRealize Log Insight\u662f\u7f8e\u56fd\u5a01\u777f\uff08Vmware\uff09\u516c\u53f8\u7684\u4e00\u5957\u96c6\u4e2d\u5f0f\u65e5\u5fd7\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002\u8be5\u4ea7\u54c1\u652f\u6301\u65e5\u5fd7\u6574\u7406\u548c\u65e5\u5fd7\u5206\u6790\u7b49\u529f\u80fd\u3002\n\nVMware vRealize Log Insight\u5b58\u5728CSV\u6ce8\u5165\u6f0f\u6d1e\u6f0f\u6d1e\uff0c\u5141\u8bb8\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u901a\u8fc7CSV\u8868\u5d4c\u5165\u4e0d\u53d7\u4fe1\u4efb\u7684\u6570\u636e\u3002",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://www.vmware.com/security/advisories/VMSA-2021-0022.html\u3002",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2022-23514",
  "openTime": "2022-03-29",
  "patchDescription": "VMware vRealize Log Insight\u662f\u7f8e\u56fd\u5a01\u777f\uff08Vmware\uff09\u516c\u53f8\u7684\u4e00\u5957\u96c6\u4e2d\u5f0f\u65e5\u5fd7\u7ba1\u7406\u89e3\u51b3\u65b9\u6848\u3002\u8be5\u4ea7\u54c1\u652f\u6301\u65e5\u5fd7\u6574\u7406\u548c\u65e5\u5fd7\u5206\u6790\u7b49\u529f\u80fd\u3002\r\n\r\nVMware vRealize Log Insight\u5b58\u5728CSV\u6ce8\u5165\u6f0f\u6d1e\u6f0f\u6d1e\uff0c\u5141\u8bb8\u7ecf\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u7684\u653b\u51fb\u8005\u53ef\u5229\u7528\u6f0f\u6d1e\u901a\u8fc7CSV\u8868\u5d4c\u5165\u4e0d\u53d7\u4fe1\u4efb\u7684\u6570\u636e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "VMware vRealize Log Insight CSV\u6ce8\u5165\u6f0f\u6d1e\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "VMware vRealize Log Insight 8.*\uff0c\u003c8.6"
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2021-22035",
  "serverity": "\u4e2d",
  "submitTime": "2021-10-14",
  "title": "VMware vRealize Log Insight CSV\u6ce8\u5165\u6f0f\u6d1e\u6f0f\u6d1e"
}

FKIE_CVE-2021-22035

Vulnerability from fkie_nvd - Published: 2021-10-13 16:15 - Updated: 2024-11-21 05:49

Severity ?

4.3 (Medium) - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Summary

References

	URL	Tags
	security@vmware.com	https://www.vmware.com/security/advisories/VMSA-2021-0022.html	Patch, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://www.vmware.com/security/advisories/VMSA-2021-0022.html	Patch, Vendor Advisory

Impacted products

Vendor	Product	Version
vmware	cloud_foundation	*
vmware	vrealize_log_insight	*
vmware	vrealize_suite_lifecycle_manager	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "67763E17-BABE-4A25-95BC-2B5F1666705C",
              "versionEndIncluding": "4.3.1",
              "versionStartIncluding": "4.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vmware:vrealize_log_insight:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BECE8925-3981-4FB9-979E-CDFC1A55A13F",
              "versionEndExcluding": "8.60",
              "versionStartExcluding": "8.0.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:vmware:vrealize_suite_lifecycle_manager:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "61B2C07D-4AD4-458B-86CA-FB2CA45A8EA7",
              "versionEndIncluding": "8.2",
              "versionStartIncluding": "8.0.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment."
    },
    {
      "lang": "es",
      "value": "VMware vRealize Log Insight (versiones 8.x anteriores a 8.6) contienen una vulnerabilidad de inyecci\u00f3n de CSV (Valores Separados por Comas) en la funci\u00f3n interactive analytics export. Un actor malicioso autenticado con privilegios no administrativos puede ser capaz de insertar datos no confiables antes de exportar una hoja CSV mediante Log Insight que podr\u00eda ser ejecutada en el entorno del usuario"
    }
  ],
  "id": "CVE-2021-22035",
  "lastModified": "2024-11-21T05:49:28.620",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 4.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "LOW",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2021-10-13T16:15:07.690",
  "references": [
    {
      "source": "security@vmware.com",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
    }
  ],
  "sourceIdentifier": "security@vmware.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-74"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2021-AVI-776

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un contournement de la politique de sécurité et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
VMware	Cloud Foundation	VMware Cloud Foundation (vRLI) versions 4.x sans le correctif KB86000
VMware	N/A	VMware vRealize Log Insight version 8.3 sans le correctif KB85990
VMware	N/A	VMware vRealize Orchestrator versions 8.x antérieures à 8.6
VMware	N/A	VMware vRealize Operations versions 8.x et 7.x antérieures à 8.6.0
VMware	Cloud Foundation	VMware Cloud Foundation (vROps) versions 4.x et 3.x
VMware	N/A	VMware vRealize Log Insight versions 8.4.1, 8.4.0 sans le correctif KB85992
VMware	N/A	VMware vRealize Log Insight version 8.2 sans le correctif KB85989
VMware	N/A	VMware vRealize Log Insight versions 8.1.1, 8.1.0, 8.0.0 et 4.x sans le correctif KB85985
VMware	N/A	vRealize Suite Lifecycle Manager (vROps) versions 8.x
VMware	N/A	vRealize Suite Lifecycle Manager (vRLI) versions 8.x sans le correctif KB86000

References

Title

Publication Time

Tags

Bulletin de sécurité VMware VMSA-2021-0022 du 12 octobre 2021	None	vendor-advisory
Bulletin de sécurité VMware VMSA-2021-0021 du 12 octobre 2021	None	vendor-advisory
Bulletin de sécurité VMware VMSA-2021-0023 du 12 octobre 2021	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "VMware Cloud Foundation (vRLI) versions 4.x sans le correctif KB86000",
      "product": {
        "name": "Cloud Foundation",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight version 8.3 sans le correctif KB85990",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Orchestrator versions 8.x ant\u00e9rieures \u00e0 8.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Operations versions 8.x et 7.x ant\u00e9rieures \u00e0 8.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware Cloud Foundation (vROps) versions 4.x et 3.x",
      "product": {
        "name": "Cloud Foundation",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight versions 8.4.1, 8.4.0 sans le correctif KB85992",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight version 8.2 sans le correctif KB85989",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight versions 8.1.1, 8.1.0, 8.0.0 et 4.x sans le correctif KB85985",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "vRealize Suite Lifecycle Manager (vROps) versions 8.x",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "vRealize Suite Lifecycle Manager (vRLI) versions 8.x sans le correctif KB86000",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-22035",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22035"
    },
    {
      "name": "CVE-2021-22033",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22033"
    },
    {
      "name": "CVE-2021-22036",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22036"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-776",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-10-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nVMware. Elles permettent \u00e0 un attaquant de provoquer un contournement de\nla politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2021-0022 du 12 octobre 2021",
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2021-0021 du 12 octobre 2021",
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0021.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2021-0023 du 12 octobre 2021",
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0023.html"
    }
  ]
}

CERTFR-2021-AVI-776

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
VMware	Cloud Foundation	VMware Cloud Foundation (vRLI) versions 4.x sans le correctif KB86000
VMware	N/A	VMware vRealize Log Insight version 8.3 sans le correctif KB85990
VMware	N/A	VMware vRealize Orchestrator versions 8.x antérieures à 8.6
VMware	N/A	VMware vRealize Operations versions 8.x et 7.x antérieures à 8.6.0
VMware	Cloud Foundation	VMware Cloud Foundation (vROps) versions 4.x et 3.x
VMware	N/A	VMware vRealize Log Insight versions 8.4.1, 8.4.0 sans le correctif KB85992
VMware	N/A	VMware vRealize Log Insight version 8.2 sans le correctif KB85989
VMware	N/A	VMware vRealize Log Insight versions 8.1.1, 8.1.0, 8.0.0 et 4.x sans le correctif KB85985
VMware	N/A	vRealize Suite Lifecycle Manager (vROps) versions 8.x
VMware	N/A	vRealize Suite Lifecycle Manager (vRLI) versions 8.x sans le correctif KB86000

References

Title

Publication Time

Tags

Bulletin de sécurité VMware VMSA-2021-0022 du 12 octobre 2021	None	vendor-advisory
Bulletin de sécurité VMware VMSA-2021-0021 du 12 octobre 2021	None	vendor-advisory
Bulletin de sécurité VMware VMSA-2021-0023 du 12 octobre 2021	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "VMware Cloud Foundation (vRLI) versions 4.x sans le correctif KB86000",
      "product": {
        "name": "Cloud Foundation",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight version 8.3 sans le correctif KB85990",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Orchestrator versions 8.x ant\u00e9rieures \u00e0 8.6",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Operations versions 8.x et 7.x ant\u00e9rieures \u00e0 8.6.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware Cloud Foundation (vROps) versions 4.x et 3.x",
      "product": {
        "name": "Cloud Foundation",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight versions 8.4.1, 8.4.0 sans le correctif KB85992",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight version 8.2 sans le correctif KB85989",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "VMware vRealize Log Insight versions 8.1.1, 8.1.0, 8.0.0 et 4.x sans le correctif KB85985",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "vRealize Suite Lifecycle Manager (vROps) versions 8.x",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    },
    {
      "description": "vRealize Suite Lifecycle Manager (vRLI) versions 8.x sans le correctif KB86000",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "VMware",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2021-22035",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22035"
    },
    {
      "name": "CVE-2021-22033",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22033"
    },
    {
      "name": "CVE-2021-22036",
      "url": "https://www.cve.org/CVERecord?id=CVE-2021-22036"
    }
  ],
  "links": [],
  "reference": "CERTFR-2021-AVI-776",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2021-10-13T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nVMware. Elles permettent \u00e0 un attaquant de provoquer un contournement de\nla politique de s\u00e9curit\u00e9 et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2021-0022 du 12 octobre 2021",
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2021-0021 du 12 octobre 2021",
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0021.html"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 VMware VMSA-2021-0023 du 12 octobre 2021",
      "url": "https://www.vmware.com/security/advisories/VMSA-2021-0023.html"
    }
  ]
}

GSD-2021-22035

Vulnerability from gsd - Updated: 2023-12-13 01:23

Details

Aliases

CVE-2021-22035

Aliases

CVE-2021-22035

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2021-22035",
    "description": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment.",
    "id": "GSD-2021-22035"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2021-22035"
      ],
      "details": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment.",
      "id": "GSD-2021-22035",
      "modified": "2023-12-13T01:23:24.346870Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security@vmware.com",
        "ID": "CVE-2021-22035",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "VMware vRealize Log Insight",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "VMware vRealize Log Insight (8.x prior to 8.6)"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CSV injection vulnerability in Log Insight"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html",
            "refsource": "MISC",
            "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:vmware:cloud_foundation:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "4.3.1",
                "versionStartIncluding": "4.0.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vmware:vrealize_log_insight:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "8.60",
                "versionStartExcluding": "8.0.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:vmware:vrealize_suite_lifecycle_manager:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "8.2",
                "versionStartIncluding": "8.0.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security@vmware.com",
          "ID": "CVE-2021-22035"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "VMware vRealize Log Insight (8.x prior to 8.6) contains a CSV(Comma Separated Value) injection vulnerability in interactive analytics export function. An authenticated malicious actor with non-administrative privileges may be able to embed untrusted data prior to exporting a CSV sheet through Log Insight which could be executed in user\u0027s environment."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-74"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html",
              "refsource": "MISC",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "https://www.vmware.com/security/advisories/VMSA-2021-0022.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 4.0,
            "confidentialityImpact": "NONE",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:S/C:N/I:P/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 8.0,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 4.3,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "LOW",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2021-10-20T13:25Z",
      "publishedDate": "2021-10-13T16:15Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2021-22035 (GCVE-0-2021-22035)

GHSA-P728-XW8R-5F6M

CNVD-2022-23514

FKIE_CVE-2021-22035

CERTFR-2021-AVI-776

Solution

CERTFR-2021-AVI-776

Solution

GSD-2021-22035

Tags

Sightings

Nomenclature