CVE-2024-37085 enables attackers to gain full control of ESXi hypervisors through AD group creation, exploited by prominent ransomware groups for data theft, lateral movement, and chaos.
Exploitation involves adding an 'ESX Admins' group in AD, granting admin privileges to any user added, posing a significant security risk and attracting widespread attention in cyber circles.
Collection
[
|
...
]