VMware Security

Back to Vulnerabilities

CVE-2023-20892

Critical

ESXi

VMware ESXi Remote Code Execution Vulnerability

Aug 15, 2023

Sarah Johnson

5921 views

Summary

A critical remote code execution vulnerability in VMware ESXi allows attackers to execute arbitrary code on affected systems.

Description

VMware ESXi contains a heap overflow vulnerability in the OpenSLP service that could allow a remote attacker to execute code as the root user on an affected system. The OpenSLP service is enabled by default on ESXi hosts and is used for service discovery on the network.

This vulnerability is particularly severe as it can be exploited remotely without authentication and can lead to complete system compromise.

Affected Products

ESXi 8.0 before ESXi80U1c-21360656
ESXi 7.0 before ESXi70U3p-21717919
ESXi 6.7 before ESXi670-202307101-SG

CVSS Score

9.8

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

References

About the Author

Sarah Johnson

Security Engineer

Sarah is a security engineer specializing in virtualization and cloud infrastructure security.

Tags

rce esxi openslp critical

Related Vulnerabilities

VMware ESXi Backdoor Vulnerability (ESXiArgs Ransomware)

A critical vulnerability in the OpenSLP service of VMware ESXi that has been actively exploited by the ESXiArgs ransomware campaign.

VMware ESXi XHCI USB Controller Heap Overflow Vulnerability

A heap overflow vulnerability in the XHCI USB controller in VMware ESXi allows a virtual machine to execute code on the hypervisor.

VMware ESXi Heap Buffer Overflow in PVSCSI Driver

A heap buffer overflow vulnerability in the VMware ESXi PVSCSI driver allows a guest virtual machine to execute code on the ESXi host.

Popular Tags

active-exploitation

information-disclosure