Denial of Service vulnerability in ESXi – July 2019
There is a new vulnerability on ESXi that allows attackers to make ESXi server unresponsive and ESXi management functionality will be unavailable. It seems, there is no affect on virtual machine but it will cause of hostd service unresponsive.
It’s recommended that protect ESXi servers by customizing firewall rules and allows trusted clients because multiple logon attempts may be generated by attacker.
If your servers were under attack, then you should restart hostd service and reboot is not necessary.
The below KB describes the workaround for issue:
This issue affecting ESXi 6.5 and 6.7. Patch is pending for ESXi 6.7 at this time but there is a patch for ESXi 6.5. ESXi 6.0 is not affected.
|Product||Version||Running On||CVE Identifier||CVSSV3||Severity||Fixed Version||Workarounds||Additional Documents|