CVE-2020-3952

Get-vSphereVersion Getting started Get-vSphereVersion is a simple way of verifying the current version of a VMWare vCenter Server Usage PS C:\> iex (new-object netwebclient)downloadstring("rawgithubusercontentcom/vikerup/Get-vSphereVersion/main/Get-vSphereVersionps1") PS C:\> Get-vSphereVersion -servername 192168010 name : VM

Exploit for CVE-2020-3952 in vCenter 6.7

Proof of concept for CVE-2020-3952 This is a short piece of code that exploits of CVE-2020-3952, which is described in detail at the Guardicore Labs post over here This vulnerability was published by VMware in April 2020 with a maximum CVSS score of 100 It allows an attacker with a network connection to take control of the vCenter Directory (and thus to the vSphere deploymen

Get-vSphereVersion Getting started Get-vSphereVersion is a simple way of verifying the current version of a VMWare vCenter Server Usage PS C:\> iex (new-object netwebclient)downloadstring("rawgithubusercontentcom/vikerup/Get-vSphereVersion/main/Get-vSphereVersionps1") PS C:\> Get-vSphereVersion -servername 192168010 name : VM

Exploit for CVE-2020-3952 in vCenter 6.7 https://www.guardicore.com/2020/04/pwning-vmware-vcenter-cve-2020-3952/

Proof of concept for CVE-2020-3952 This is a short piece of code that exploits of CVE-2020-3952, which is described in detail at the Guardicore Labs post over here This vulnerability was published by VMware in April 2020 with a maximum CVSS score of 100 It allows an attacker with a network connection to take control of the vCenter Directory (and thus to the vSphere deploymen

VMWare vmdir missing access control exploit checker

Script to check for vulnerable status of CVE-2020-3952 It is inspired from guardicore exploit but with a slight difference: it does NOT create an admin user It will assess the vulnerable status by validating that the builtin Administrators group can be tainted by creating or appending the harmless 'description' attribute Check Usage: $ python exploit_checkpy vserve