Vulnerabilities > CVE-2021-21974 - Out-of-bounds Write vulnerability in VMWare Cloud Foundation and Esxi
Attack vector
ADJACENT_NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
HIGH Integrity impact
HIGH Availability impact
HIGH Summary
OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the heap-overflow issue in OpenSLP service resulting in remote code execution.
Vulnerable Configurations
Common Weakness Enumeration (CWE)
Related news
- Massive ESXiArgs ransomware attack targets VMware ESXi servers worldwide (source)
- Thousands of unpatched VMware ESXi servers hit by ransomware via old bug (CVE-2021-21974) (source)
- Massive ransomware operation targets VMware ESXi: How to protect from this security threat (source)
- Among the thousands of ESXiArgs ransomware victim orgs? FBI and CISA to the rescue (source)
- Among the thousands of ESXiArgs ransomware victims? FBI and CISA to the rescue (source)
- February 2023 Patch Tuesday forecast: A Valentine’s date (source)
- Week in review: VMware ESXi servers under attack, ChatGPT’s malicious potential, Reddit breached (source)
References
- http://packetstormsecurity.com/files/162957/VMware-ESXi-OpenSLP-Heap-Overflow.html
- http://packetstormsecurity.com/files/162957/VMware-ESXi-OpenSLP-Heap-Overflow.html
- https://www.vmware.com/security/advisories/VMSA-2021-0002.html
- https://www.vmware.com/security/advisories/VMSA-2021-0002.html
- https://www.zerodayinitiative.com/advisories/ZDI-21-250/
- https://www.zerodayinitiative.com/advisories/ZDI-21-250/