(Sorry, I don’t know how to count. The video says it’s pwnage part 48, but it’s actually part 49)

Oooo, giggidy! Today’s tale of pentest pwnage is about pwning vCenter with CVE-2021-44228 – a vulnerability that lets us bypass authentication entirely and do/take what we want from vCenter! Key links to make the magic happen:

Written by: Brian Johnson

Share on socials: