Vulnerabilities > CVE-2020-3992 - USE After Free vulnerability in VMWare Cloud Foundation and Esxi

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

vmware

CWE-416

critical

NVD

Published: 2020-10-20

Updated: 2020-11-26

Summary

OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.

Vulnerable Configurations

Part	Description	Count
Application	Vmware Vmware Cloud Foundation 3.0 Vmware Cloud Foundation 3.0.1 Vmware Cloud Foundation 3.0.1.1 Vmware Cloud Foundation 3.5 Vmware Cloud Foundation 3.5.1 Vmware Cloud Foundation 3.7 Vmware Cloud Foundation 3.7.1 Vmware Cloud Foundation 3.7.2 Vmware Cloud Foundation 3.8 Vmware Cloud Foundation 3.8.1 Vmware Cloud Foundation 3.9 Vmware Cloud Foundation 3.9.1 Vmware Cloud Foundation 3.10 Vmware Cloud Foundation 4.0 Vmware Cloud Foundation 4.0.1	15
OS	Vmware Vmware Esxi 6.5 Vmware Esxi 6.7 Vmware Esxi 7.0.0	222

Common Weakness Enumeration (CWE)

CWE-416 - Use After Free

Vulnerabilities > CVE-2020-3992 - USE After Free vulnerability in VMWare Cloud Foundation and Esxi

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Related news

References