CVE-2021-21985

This repository provides a functional proof-of-concept exploit for CVE-2021-21985, a remote code execution vulnerability in VMware vCenter Server's Virtual SAN Health Check plug-in. The exploit leverages deserialization via the `VsanCapabilityProvider` endpoint to execute arbitrary commands by chaining method calls to `javax.naming.InitialContext.doLookup`.

This repository contains a functional exploit for CVE-2021-21985, a remote code execution vulnerability in VMware vCenter Server. The exploit leverages JNDI injection via the `vsanQueryUtil_setDataService` endpoint to achieve RCE by chaining method calls to execute arbitrary commands through an RMI server.

This repository contains a functional exploit for CVE-2021-21985, a remote code execution vulnerability in VMware vCenter Server. The exploit leverages JNI (Java Native Interface) to execute arbitrary commands by loading a malicious shared library.

This repository contains a functional exploit for CVE-2021-21985, a remote code execution vulnerability in the VMware vCenter Server Virtual SAN Health Check plugin. The exploit allows unauthenticated attackers to execute commands with unrestricted privileges on the underlying OS hosting vCenter Server.

This Python script exploits CVE-2021-21985, a remote code execution vulnerability in VMware vCenter Server 6.7-7.0. It crafts a malicious HTTP POST request targeting the `/ui/h5-vsan/rest/proxy/service/` endpoint with a serialized payload to achieve RCE via RMI deserialization.

This repository contains a PowerShell script that checks for the presence of CVE-2021-21985 by sending a crafted HTTP POST request to a VMware vCenter Server endpoint and analyzing the response. It does not exploit the vulnerability but detects its presence.

This repository contains functional exploit code for CVE-2021-21985, a vulnerability in VMware vCenter Server. The PoC demonstrates a chain of HTTP requests to achieve remote code execution (RCE) by manipulating the VsanHttpProvider and leveraging JNDI injection.

The repository provides a description of CVE-2021-21985, a critical RCE vulnerability in VMware vCenter Server's Virtual SAN Health Check plug-in due to lack of input validation. However, it lacks technical details, exploit code, or patch analysis, making it more of a high-level summary than a deep technical writeup.

This repository contains functional exploit code for CVE-2021-21985, a vulnerability in VMware vCenter. The exploit leverages SSRF and RMI deserialization to achieve remote code execution (RCE) on the target system.

This repository provides a functional proof-of-concept exploit for CVE-2021-21985, a remote code execution vulnerability in VMware vCenter Server's Virtual SAN Health Check plug-in. The exploit leverages deserialization via the `VsanCapabilityProvider` endpoint to execute arbitrary commands by chaining method calls to achieve RCE.

This repository contains functional exploit code for CVE-2021-21985, a deserialization vulnerability in VMware vSphere. The PoC includes scripts for both forward and reverse shell execution, leveraging malicious Spring bean definitions to achieve remote code execution.

This script checks for the presence of CVE-2021-21985 by sending a crafted JSON payload to a specific vCenter Server endpoint and analyzing the HTTP response status and content. It does not exploit the vulnerability but detects whether the target is vulnerable or patched.

This repository contains a functional exploit tool for multiple VMware vCenter vulnerabilities, including CVE-2021-21985. It provides command execution, file upload, and reverse shell capabilities, with specific modules for different CVEs.

This Metasploit module exploits CVE-2021-21985, a vulnerability in VMware vCenter Server's Virtual SAN Health Check plugin. It leverages Java unsafe reflection and SSRF to achieve remote code execution as the vsphere-ui user by crafting a malicious data URI with a Spring bean definition.