Hynek Petrak

4 exploits Active since Dec 2019
CVE-2020-3992 NOMISEC CRITICAL SCANNER
VMware ESXi < 7.0.1-0.0.16850804, < 6.7 ESXi670-202010401-SG, < 6.5 ESXi650-202010401-SG - Use-After-Free in OpenSLP
OpenSLP as used in VMware ESXi (7.0 before ESXi_7.0.1-0.0.16850804, 6.7 before ESXi670-202010401-SG, 6.5 before ESXi650-202010401-SG) has a use-after-free issue. A malicious actor residing in the management network who has access to port 427 on an ESXi machine may be able to trigger a use-after-free in the OpenSLP service resulting in remote code execution.
49 stars
CVSS 9.8
CVE-2019-5544 NOMISEC CRITICAL SCANNER
VMware Horizon DaaS 8.0.0-8.9.9 - Heap Overflow via OpenSLP
OpenSLP as used in ESXi and the Horizon DaaS appliances has a heap overwrite issue. VMware has evaluated the severity of this issue to be in the Critical severity range with a maximum CVSSv3 base score of 9.8.
49 stars
CVSS 9.8
CVE-2020-3952 METASPLOIT CRITICAL ruby WORKING POC
VMware vCenter Server vmdir Information Disclosure
Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or external Platform Services Controller (PSC), does not correctly implement access controls.
CVSS 9.8
CVE-2020-3952 METASPLOIT CRITICAL ruby WORKING POC
VMware vCenter Server vmdir Information Disclosure
Under certain conditions, vmdir that ships with VMware vCenter Server, as part of an embedded or external Platform Services Controller (PSC), does not correctly implement access controls.
CVSS 9.8