VYPR
Unrated severityCISA KEVNVD Advisory· Published Oct 20, 2020· Updated Oct 21, 2025

CVE-2020-3992

CVE-2020-3992

Description

OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • VMware/Esxillm-fuzzy
    Range: 7.0 < ESXi_7.0.1-0.0.16850804, 6.7 < ESXi670-202010401-SG, 6.5 < ESXi650-202010401-SG

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.