Malicious actors are mass scanning the internet for vulnerable VMware vCenter servers that are unpatched against a critical remote code execution flaw. The ongoing activity was detected by Bad Packets on June 3 and corroborated yesterday by security researcher Kevin Beaumont. The development follows the publication of a proof-of-concept (PoC) RCE exploit code targeting the bug. The issue is a consequence of a lack of input validation in the Virtual SAN (vSAN) Health Check plug-in, which could be abused by an attacker.
Source: https://thehackernews.com/2021/06/alert-critical-rce-bug-in-vmware.html