THREATOPS
THREAT OPSCVEs › CVE-2019-5544

CVE-2019-5544 — VMware ESXi and Horizon DaaS OpenSLP Heap-Based Buffer Overflow Vulnerability

CISA KEVExploited: confirmedVMware

VMware ESXi and Horizon Desktop as a Service (DaaS) OpenSLP contains a heap-based buffer overflow vulnerability that allows an attacker with network access to port 427 to overwrite the heap of the OpenSLP service to perform remote code execution.

Vulnerability details