Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

VMware Aria Operations for Logs RCE (CVE-2023-34051) #18480

Closed
jheysel-r7 opened this issue Oct 23, 2023 · 0 comments
Closed

VMware Aria Operations for Logs RCE (CVE-2023-34051) #18480

jheysel-r7 opened this issue Oct 23, 2023 · 0 comments
Labels
suggestion-module New module suggestions

Comments

@jheysel-r7
Copy link
Contributor

jheysel-r7 commented Oct 23, 2023
edited
Loading

Summary

At first glance this looked appetizing however:

While this attack may seem simple – it does come with some challenges. It relies on the attacker having compromised an existing host in the environment and has the sufficient permissions add an additional static IP to an existing interface or add an additional interface

:(

Basic example

POC
@jheysel-r7 jheysel-r7 added the suggestion-module New module suggestions label Oct 23, 2023
@jheysel-r7 jheysel-r7 self-assigned this Oct 23, 2023
@jheysel-r7 jheysel-r7 moved this to Todo in Metasploit Kanban Oct 23, 2023
@jheysel-r7 jheysel-r7 removed their assignment Oct 23, 2023
@jheysel-r7 jheysel-r7 closed this as not planned Won't fix, can't repro, duplicate, stale Oct 24, 2023
@github-project-automation github-project-automation bot moved this from Todo to Done in Metasploit Kanban Oct 24, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
suggestion-module New module suggestions
Projects
Metasploit Kanban
Archived in project
Milestone
No milestone
Development

No branches or pull requests
1 participant
@jheysel-r7