CVE-2021-21985

VMware vSphere Client contains an improper input validation vulnerability in the Virtual SAN Health Check plug-in, which is enabled by default in vCenter Server, which allows for remote code execution. Vendor/Product: VMware vCenter Server. Added to CISA KEV 2021-11-03; required action: Apply updates per vendor instructions.