Vulnerability detail

Enriched intelligence for a single CVE

5.3

CVSS
Medium

CVE-2021-22017

PUBLISHED

Rhttproxy as used in vCenter Server contains a vulnerability due to improper implementation of URI normalization. A malicious actor with network...

Exploited in the wild Remote Low complexity No user interaction

Vendor: VMware
Product: VMware vCenter Server, VMware Cloud Foundation
Published: Sep 23, 2021
EPSS: —

Description

Rhttproxy as used in vCenter Server contains a vulnerability due to improper implementation of URI normalization. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to bypass proxy leading to internal endpoints being accessed.

cisa nuclei_scanner

CVSS scores

CVSS v3.1 5.3 Medium

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

CVSS v2.0 5.0

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitation status

Exploited in the wild

Recorded 2022-01-10 00:00:00 UTC · Source

SSVC decision points

Exploitation: active
Automatable: Yes
Technical impact: partial

References

https://www.vmware.com/security/advisories/VMSA-2021-0020.html

Known exploited vulnerability sources

Catalogues that list this CVE as a known exploited vulnerability.

Source	Added
CISA	Jan 10, 2022
CISA	Jan 10, 2022

Scanner integrations

Scanner	Reference	Detected
Nuclei	https://github.com/projectdiscovery/nuclei-templates/blob/main/http/cves/2021/CVE-2021-22017.yaml	Jun 01, 2026

Timeline

CVE ID Reserved

January 04, 2021
CVE Published to Public

September 23, 2021
Added to KEVIntel

January 10, 2022
Added to KEVIntel

January 10, 2022
Detected by Nuclei

June 01, 2026