Entreprise française de cybersécurité depuis 2004
☎ 03 60 47 09 81 - info@securiteinfo.com
☎ 03 60 47 09 81 - info@securiteinfo.com
%20&color=brightgreen)
OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.
No PoCs from references.
- https://github.com/0xor0ne/awesome-list
- https://github.com/20142995/nuclei-templates
- https://github.com/4ykhan/cve-report
- https://github.com/ARPSyndicate/cvemon
- https://github.com/HynekPetrak/CVE-2019-5544_CVE-2020-3992
- https://github.com/Jalexander798/JA_Tools-Cybersecurity-Resource-2
- https://github.com/Ostorlab/KEV
- https://github.com/Ostorlab/known_exploited_vulnerbilities_detectors
- https://github.com/alphaSeclab/sec-daily-2020
- https://github.com/bachkhoasoft/awesome-list-ks
- https://github.com/ceciliaaii/CVE_2020_3992
- https://github.com/cyb3r-w0lf/nuclei-template-collection
- https://github.com/developer3000S/PoC-in-GitHub
- https://github.com/dgh05t/VMware_ESXI_OpenSLP_PoCs
- https://github.com/hectorgie/PoC-in-GitHub
- https://github.com/nomi-sec/PoC-in-GitHub
- https://github.com/orgTestCodacy11KRepos110MB/repo-3569-collection-document
- https://github.com/soosmile/POC
- https://github.com/tom0li/collection-document
- https://github.com/vpxuser/VMware-ESXI-OpenSLP-Exploit