EIP-2026-104120

PRE-CVE

VMware Cloud Director 10.5 - Bypass identity verification

Title source: legacy

Exploitation Summary

EIP tracks 1 public exploit for EIP-2026-104120. PoCs published by Abdualhadi khalifa.

AI-analyzed exploit summary This exploit targets CVE-2023-34060 in VMware Cloud Director 10.5, bypassing identity verification. It checks for open ports, verifies vulnerability via HTTP status code, and executes commands over SSH with hardcoded credentials.

Description

VMware Cloud Director 10.5 - Bypass identity verification

Exploits (1)

exploitdb WORKING POC

by Abdualhadi khalifa · pythonremotemultiple

https://www.exploit-db.com/exploits/51882

View Code ZIP pw:eip

This exploit targets CVE-2023-34060 in VMware Cloud Director 10.5, bypassing identity verification. It checks for open ports, verifies vulnerability via HTTP status code, and executes commands over SSH with hardcoded credentials.

Classification

Working Poc 90%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: VMware Cloud Director 10.5

Auth required

Prerequisites: SSH access with default credentials (root:vmware) · Open ports (22, 5480)

MITRE ATT&CK

T1078 - Valid Accounts T1021.004 - SSH

devstral-2 · analyzed Feb 16, 2026 Full analysis →

Details

Status pre_cve

Tracked Since Feb 18, 2026