• caglararli@hotmail.com
  • 05386281520

Iranian Hackers Exploiting VMware RCE Bug to Deploy ‘Core Impact’ Backdoor

Çağlar Arlı      -    35 Views

Iranian Hackers Exploiting VMware RCE Bug to Deploy ‘Core Impact’ Backdoor

An Iranian-linked threat actor known as Rocket Kitten has been observed actively exploiting a recently patched VMware vulnerability to gain initial access and deploy the Core Impact penetration testing tool on vulnerable systems. Tracked as CVE-2022-22954 (CVSS score: 9.8), the critical issue concerns a case of remote code execution (RCE) vulnerability affecting VMware Workspace ONE Access and