CVE-2021-21975CISA KEVEPSS p99.5%
CVE-2021-21975VMware Server Side Request Forgery in vRealize Operations Manager API
VMware / vRealize Operations Manager API
Description
Server Side Request Forgery (SSRF) in vRealize Operations Manager API prior to 8.4 may allow a malicious actor with network access to the vRealize Operations Manager API to perform a SSRF attack to steal administrative credentials.
Scoring
| EPSS | 78.44% probability of exploitation · percentile 99.5% · 2026-06-17T12:03:21Z |
CISA KEV entry
Added to KEV: 2022-01-18
(incoming)1
| Type | Target | Confidence | Tier |
|---|---|---|---|
| KEVEntry | VMware Server Side Request Forgery in vRealize Operations Manager APIkev-cve-2021-21975 | 0% | live |
Related by meaning· 6
Nearest entities by semantic similarity across the cs-graph corpus.