VMware vCenter contains an improper check for dropped privileges vulnerability. This vulnerability could allow an attacker with network access to the vCenter Server to escalate privileges to root by sending a specially crafted packet.
Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
CWE-250
CWE-273