Rewterz Threat Advisory – CVE-2021-20491 – IBM Spectrum Protect Server Vulnerability
April 19, 2021Rewterz Threat Advisory – CVE-2021-29443 – Node.js jose Module Vulnerability
April 19, 2021Rewterz Threat Advisory – CVE-2021-20491 – IBM Spectrum Protect Server Vulnerability
April 19, 2021Rewterz Threat Advisory – CVE-2021-29443 – Node.js jose Module Vulnerability
April 19, 2021Severity
Medium
Analysis Summary
CVE-2021-21981
VMware NSX-T allows an attacker with a local guest user account to assign privileges higher than their own permission level. The attacker can exploit the RBAC (Role-based access control) role assignment to gain privilege escalation. The vulnerability is exploited through a local guest user account and is not activated by default.
Impact
Privilege Escalation
Affected Vendors
VMware
Affected Products
VMware NSX-T
Remediation
Patches to remedy this vulnerability are available at