Support Content Notification - Support Portal

VMSA-2021-0012:VMware Carbon Black App Control update addresses authentication bypass

Product/Component

Carbon Black App Control

0 more products

Notification Id

23604

Last Updated

20 June 2021

Initial Publication Date

20 June 2021

Status

CLOSED

Severity

CRITICAL

CVSS Base Score

9.4

WorkAround

Affected CVE

CVE-2021-21998

Advisory ID: VMSA-2021-0012

CVSSv3 Range: 9.4

Issue Date:2021-06-22

Updated On: 2021-06-22 (Initial Advisory)

CVE(s): CVE-2021-21998

Synopsis: VMware Carbon Black App Control update addresses authentication bypass (CVE-2021-21998)

1. Impacted Products

VMware Carbon Black App Control (AppC)

2. Introduction

An authentication bypass in the VMware Carbon Black App Control management server was privately reported to VMware. Updates are available to remediate this vulnerability in the affected VMware product.

3. VMware Carbon Black App Control updates address authentication bypass (CVE-2021-21998)

Description

The VMware Carbon Black App Control management server has an authentication bypass. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.4.

Known Attack Vectors

A malicious actor with network access to the VMware Carbon Black App Control management server might be able to obtain administrative access to the product without the need to authenticate.

Resolution

To remediate CVE-2021-21998, apply the patches listed in the 'Fixed Version' column of the 'Response Matrix' found below.

Workarounds

None.

Additional Documentation

None.

Notes

Acknowledgements

None

Response Matrix

Product	Version	Running On	CVE Identifier	CVSSv3	Severity	Fixed Version	Workarounds	Additional Documentation
AppC	8.6.x	Windows	CVE-2021-21998	9.4	critical	8.6.2	None	None
AppC	8.5.x	Windows	CVE-2021-21998	9.4	critical	8.5.8	None	None
AppC	8.1.x, 8.0.x	Windows	CVE-2021-21998	9.4	critical	Hotfix	None	None