CVE-2021-22055

Summary

The SchedulerServer in Vmware photon allows remote attackers to inject logs through \r in the package parameter. Attackers can also insert malicious data and fake entries.

Affected Software

VendorProductVersion RangeStatus
n/aPhoton OSMaster buildaffected

Weaknesses

  • Heap-based buffer overflow issues via Cortado ThinPrint

ADP Enrichment

CVE Program Container

Additional References

References