CVE-2024-22274

This repository contains a functional exploit for CVE-2024-22274, an authenticated RCE vulnerability in VMware vCenter Server. The exploit leverages flag injection in the backup.validate API to execute arbitrary commands as root via SSH.

The repository lacks actual exploit code and instead redirects to an external PDF for details, which is a common tactic for suspicious or monetized exploits. No technical details or proof-of-concept code are provided in the repository itself.

This repository contains a functional exploit for CVE-2024-22274, which creates a root user via SSH and spawns a root shell. The exploit uses Paramiko to establish an SSH connection, execute a base64-encoded command to create a new user, and then logs in as that user to obtain a root shell.

This repository contains a functional Go-based exploit for CVE-2024-22274, which automates the creation of a new user with sudo privileges via SSH and provides a root shell. The exploit uses base64-encoded commands to bypass restrictions and leverages SSH for remote execution.