{"uuid": "28924392-a32d-47f0-8c04-a97a62b9e922", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-37085", "type": "exploited", "source": "https://t.me/KomunitiSiber/2321", "content": "VMware ESXi Flaw Exploited by Ransomware Groups for Admin Access\nhttps://thehackernews.com/2024/07/vmware-esxi-flaw-exploited-by.html\n\nA recently patched security flaw impacting VMware ESXi hypervisors has been actively exploited by \"several\" ransomware groups to gain elevated permissions and deploy file-encrypting malware.\nThe attacks involve the exploitation of CVE-2024-37085 (CVSS score: 6.8), an Active Directory integration authentication bypass that allows an attacker to obtain administrative access to the host.\n\"A", "creation_timestamp": "2024-07-30T11:29:56.000000Z"}