Vulnerabilities > CVE-2020-3992 - Use After Free vulnerability in VMWare Esxi 6.5/6.7

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

vmware

CWE-416

critical

NVD

Published: 2020-10-20

Updated: 2022-06-15

Summary

OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.

Vulnerable Configurations

Part	Description	Count
OS	Vmware Vmware Esxi 6.5 Vmware Esxi 6.7 Vmware Esxi 7.0.0	222
Application	Vmware Vmware Cloud Foundation 4.0 Vmware Cloud Foundation 4.0.1 Vmware Cloud Foundation 3.0 Vmware Cloud Foundation 3.0.1 Vmware Cloud Foundation 3.0.1.1 Vmware Cloud Foundation 3.5 Vmware Cloud Foundation 3.5.1 Vmware Cloud Foundation 3.7 Vmware Cloud Foundation 3.7.1 Vmware Cloud Foundation 3.7.2 Vmware Cloud Foundation 3.8 Vmware Cloud Foundation 3.8.1 Vmware Cloud Foundation 3.9 Vmware Cloud Foundation 3.9.1 Vmware Cloud Foundation 3.10 Vmware Cloud Foundation 3.10.1	19

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

Vulnerabilities > CVE-2020-3992 - Use After Free vulnerability in VMWare Esxi 6.5/6.7

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Related news

References