CVE-2020-3992: VMware ESXi OpenSLP Use-After-Free Vulnerability. VMware

VMware ESXi OpenSLP Use-After-Free Vulnerability. VMware ESXi OpenSLP contains a use-after-free vulnerability that allows an attacker residing in the management network with access to port 427 to perform remote code execution.

• CISA KEV-listed (remediation due 2022-05-03)
• used in ransomware campaigns
• EPSS 90.3% (99.6% percentile)

Browse the CVE database

Read the full analysis on IntelFusions