Allele Security Alert
ASA-2019-00425, CVE-2019-5528, VMSA-2019-0011
Partial denial of service vulnerability in hostd process
VMware ESXi version 6.7
VMware ESXi version 6.5
VMware ESXi version 6.7 patch pending
VMware ESXi version 6.5 ESXi650-201907201-UG
Proof of concept
Multiple failed login attempts to ESXi may cause the hostd service to become unresponsive resulting in a partial denial of service for management functionality.
A malicious actor with network access to an ESXi host could create a partial denial of service condition in management functionality. Successful exploitation of this issue may cause hostd to become unresponsive resulting in conditions such as an ESXi host disconnecting from vCenter.
If there is any error in this alert or you wish a comprehensive analysis, let us know.
Last modified: July 12, 2019