Full title: VMware vCenter Server Virtual SAN Health Check Remote Code Execution Exploit 
Category: remote exploits
Platform: windows
This Metasploit module exploits Java unsafe reflection and SSRF in the VMware vCenter Server Virtual SAN Health Check plugin's ProxygenController class to execute code as the vsphere-ui user. See the vendor advisory for affected and patched versions. Tested against VMware vCenter Server 6.7 Update 3m (Linux appliance

# 0day.today @ http://0day.today/