Cybersecurity Alerts

Actively Exploited Vulnerabilities

← Back to Cybersecurity Alerts

CVE-2020-3992

VMware | ESXiAdded 2021-11-03Remediation Deadline 2022-05-03Active Ransomware Campaign

VMware ESXi OpenSLP Use-After-Free Vulnerability

VMware ESXi OpenSLP contains a use-after-free vulnerability that allows an attacker residing in the management network with access to port 427 to perform remote code execution.

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-416

References