CVE-2021-21974

Опубликовано: 24 фев. 2021

Источник: redhat

CVSS3: 8.8

EPSS Средний

Описание

OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG) has a heap-overflow vulnerability. A malicious actor residing within the same network segment as ESXi who has access to port 427 may be able to trigger the heap-overflow issue in OpenSLP service resulting in remote code execution.

A heap overflow vulnerability was found in OpenSLP as used in ESXi (7.0 before ESXi70U1c-17325551, 6.7 before ESXi670-202102401-SG, 6.5 before ESXi650-202102101-SG). This flaw allows a malicious actor residing within the same network segment as ESXi, who has access to port 427, to trigger the heap overflow issue in the OpenSLP service, resulting in remote code execution.

Отчет

This vulnerability only exists in VMware’s implementation of OpenSLP and does not affect any Red Hat product.

Затронутые пакеты

Платформа	Пакет	Состояние
Red Hat Enterprise Linux 6	openslp	Not affected
Red Hat Enterprise Linux 7	openslp	Not affected
Red Hat Enterprise Linux 8	openslp	Not affected
Red Hat Enterprise Linux 9	openslp	Not affected

Показывать по

Ссылки на источники

Дополнительная информация

Статус:

Important

Дефект:

CWE-787

https://bugzilla.redhat.com/show_bug.cgi?id=2167943OpenSLP: heap-overflow

EPSS

Процентиль: 98%

0.49719

Средний

8.8 High

CVSS3

Связанные уязвимости

CVE-2021-21974

CVSS3: 8.8

nvd

почти 5 лет назад

GHSA-4mwc-fv8c-wp9f

CVSS3: 8.8

github

больше 3 лет назад

BDU:2021-00988

CVSS3: 8.8

fstec

почти 5 лет назад

Уязвимость службы OpenSLP гипервизора VMware ESXi, позволяющая нарушителю выполнить произвольный код

EPSS

Процентиль: 98%

0.49719

Средний

8.8 High

CVSS3