——-
Hello ,
——-
You are receiving this email because LeakIX’s NetworkGuardian has found a critical issue on your network.
If you are an hosting company, your cooperation on contacting the affected customer would be welcome and could help protect your network from abuse.
+————-+————————+
| | |
+————-+————————+
| Source | https://135.181.77.43 |
| Ip | 135.181.77.43 |
| Discovered | 16 Oct 23 02:39 UTC |
| Plugin | EsxVersionPlugin |
| Reported to | abuse@hetzner.com |
+————-+————————+
——————
Issue description
——————
The following ESXi hypervisor is publicly accessible and looks out-dated :
It is critical to update to a safe version as soon as possible since multiple CVEs allow remote attackers to DoS or achieve RCE (Remote code execution) on the server. Those vulnerabilities are currently used in ransomware campaign and could damage your network.
Reference:
*
( https://www.cvedetails.com/cve/CVE-2020-3992 ) https://www.cvedetails.com/cve/CVE-2020-3992
*
( https://www.cvedetails.com/cve/CVE-2021-21974 ) https://www.cvedetails.com/cve/CVE-2021-21974
———
Summary:
———
Found vulnerable ESXi:
Version: 6.5.0
Build: 15256468
Affected by CVE-2020-3992
Affected by CVE-2021-21974
Need help, have questions or are we hitting the wrong email address? Contact us at support@leakix.net, we’d love to help.
Yours truly,
LeakIX — https://leakix.net
Copyright © 2023 LeakIX. All rights reserved.
