Thousands of unpatched VMware ESXi servers hit by ransomware via old bug (CVE-2021-21974)

Late last week, unknown attackers launched a widespread ransomware attack hitting VMware ESXi hypervisors via CVE-2021-21974, an easily exploitable vulnerability that allows them to run exploit code remotely, without prior authentication. Patches for CVE-2021-21974, a vulnerability in ESXi’s OpenSLP service, have been provided by VMware two years ago, and this attack has revealed just how many servers are out there are still unpatched, with the SLP service still running and the OpenSLP port (427) still … More →

The post …

attack attackers authentication bug canada censys cloud security code cve cve-2021-21974 don't miss esxi europe exploit exploit code france hot stuff hypervisors old ovhcloud patches ransomware ransomware attack run servers service slp unpatched usa virtualization vmware vmware esxi vmware esxi hypervisors vmware esxi servers vulnerability