module

VMWare Aria Operations for Networks (vRealize Network Insight) SSH Private Key Exposure

Disclosed
2023-08-29
Created
2023-10-24

Description

VMWare Aria Operations for Networks (vRealize Network Insight) versions 6.0.0 through 6.10.0
do not randomize the SSH keys on virtual machine initialization. Since the key is easily
retrievable, an attacker can use it to gain unauthorized remote access as the "support" (root) user.

Authors

h00die
SinSinology
Harsh Jaiswal ( Harsh Jaiswal (@rootxharsh)
Rahul Maini ( Rahul Maini (@iamnoooob)

Platform

Unix

Architectures

cmd

Module Options

To display the available options, load the module within the Metasploit console and run the commands ‘show options’ or ‘show advanced’:


msf > use exploit/linux/ssh/vmware_vrni_known_privkey
msf exploit(vmware_vrni_known_privkey) > show targets
...targets...
msf exploit(vmware_vrni_known_privkey) > set TARGET < target-id >
msf exploit(vmware_vrni_known_privkey) > show options
...show and set options...
msf exploit(vmware_vrni_known_privkey) > exploit

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.