Rewterz Threat Alert – Nanocore Rat – Active IOCs
July 14, 2021Rewterz Threat Advisory – ICS: Schneider Electric Multiple Security Vulnerabilities
July 14, 2021Rewterz Threat Alert – Nanocore Rat – Active IOCs
July 14, 2021Rewterz Threat Advisory – ICS: Schneider Electric Multiple Security Vulnerabilities
July 14, 2021Severity
High
Analysis Summary
CVE-2021-21994
VMware ESXI could allow a remote attacker to bypass security restrictions, caused by improper authentication in SFCB. By sending a specially crafted request, an attacker could exploit this vulnerability to bypass SFCB authentication.
CVE-2021-21995
VMware ESXI is vulnerable to a denial of service, caused by a heap out-of-bounds read in OpenSLP. A remote attacker with access to port 427 could exploit this vulnerability to cause a denial of service.
Impact
- Denial of service
- Security Bypass
Affected Vendors
VMware
Affected Products
- VMware ESXi 6.5
- VMware ESXi 6.7
- VMware ESXi 7.0
- VMware Cloud Foundation (ESXi) 3.0
- VMware Cloud Foundation (ESXi) 4.0
Remediation
Refer to VMware advisory for the complete list of affected products and their respective patches.
https://www.vmware.com/security/advisories/VMSA-2021-0014.html