Description – OpenSLP as used in ESXi has a heap-overflow vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.8. Functionality Impacts – With the workaround, CIM clients which uses SLP to find CIM servers over port #427 will not be … Continue reading LEARN – Disabling ESXi OpenSLP heap-overflow vulnerability (CVE-2021-21974)