Vulnerability Description
OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the heap-overflow issue in OpenSLP service resulting in remote code execution.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Vmware | Cloud Foundation | >= 3.0, < 3.10.1.2 |
| Vmware | Esxi | 6.5 |
Related Weaknesses (CWE)
References
- http://packetstormsecurity.com/files/162957/VMware-ESXi-OpenSLP-Heap-Overflow.htExploitThird Party AdvisoryVDB Entry
- https://www.vmware.com/security/advisories/VMSA-2021-0002.htmlVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-250/Third Party AdvisoryVDB Entry
- http://packetstormsecurity.com/files/162957/VMware-ESXi-OpenSLP-Heap-Overflow.htExploitThird Party AdvisoryVDB Entry
- https://www.vmware.com/security/advisories/VMSA-2021-0002.htmlVendor Advisory
- https://www.zerodayinitiative.com/advisories/ZDI-21-250/Third Party AdvisoryVDB Entry
FAQ
What is CVE-2021-21974?
CVE-2021-21974 is a vulnerability with a CVSS score of 8.8 (HIGH). OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same ...
How severe is CVE-2021-21974?
CVE-2021-21974 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2021-21974?
Check the references section above for vendor advisories and patch information. Affected products include: Vmware Cloud Foundation, Vmware Esxi.