CVE-2024-37085β€”VMware ESXi Authentication Bypass Vulnerability

PUBLISHEDvulnerability record
2024-07-30 Β· last modified June 21, 2025

Metadata

CVE ID:
CVE-2024-37085
Project:
VMware
Product:
ESXi
Date Added:
2024-07-30
Due Date:
2024-08-20
Last Updated:
June 21, 2025

Vulnerability Name

VMware ESXi Authentication Bypass Vulnerability

Description

VMware ESXi contains an authentication bypass vulnerability. A malicious actor with sufficient Active Directory (AD) permissions can gain full access to an ESXi host that was previously configured to use AD for user management by re-creating the configured AD group ('ESXi Admins' by default) after it was deleted from AD.

Known To Be Used in Ransomware Campaigns?

Ransomware Status:
KNOWN

Action

Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.

Additional Notes

Related News Articles

Related Weaknesses