← back
CVE-2021-21995

CVE-2021-21995

EPSS 1.0%
OpenSLP as used in ESXi has a denial-of-service vulnerability due a heap out-of-bounds read issue. A malicious actor with network access to port 427 on ESXi may be able to trigger a heap out-of-bounds read in OpenSLP service resulting in a denial-of-service condition.
Affected products
n/a · VMware ESXi and VMware Cloud Foundation

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.vmware.com/security/advisories/VMSA-2021-0014.html