Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
VMware ESXi 资源管理错误漏洞
Vulnerability Description
VMware ESXi是美国威睿(VMware)公司的一套可直接安装在物理服务器上的服务器虚拟化平台。 VMware ESXi 存在安全漏洞,该漏洞源于攻击者可以访问ESXi机器上的427端口,从而利用该漏洞导致远程代码执行。以下产品及版本受到影响: ESXi_7.0.1-0.0.16850804 7.0之前版本, ESXi670-202010401-SG 6.7之前版本, ESXi650-202010401-SG 6.5 之前版本。
CVSS Information
N/A
Vulnerability Type
N/A