Rapid7’s 2026 Global Cybersecurity Summit is now available on-demand.Watch sessions.
Rapid7

module

VMWare Aria Operations for Networks (vRealize Network Insight) SSH Private Key Exposure

Try Surface Command
Back to search
Disclosed
Aug 29, 2023
Created
Oct 24, 2023

Description

VMWare Aria Operations for Networks (vRealize Network Insight) versions 6.0.0 through 6.10.0
do not randomize the SSH keys on virtual machine initialization. Since the key is easily
retrievable, an attacker can use it to gain unauthorized remote access as the "support" (root) user.

Authors

h00die
SinSinology
Harsh Jaiswal ( Harsh Jaiswal (@rootxharsh)
Rahul Maini ( Rahul Maini (@iamnoooob)

Platform

Unix

Architectures

cmd

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


    msf > use exploit/linux/ssh/vmware_vrni_known_privkey
    msf exploit(vmware_vrni_known_privkey) > show targets
        ...targets...
    msf exploit(vmware_vrni_known_privkey) > set TARGET < target-id >
    msf exploit(vmware_vrni_known_privkey) > show options
        ...show and set options...
    msf exploit(vmware_vrni_known_privkey) > exploit
Title
Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report