SynopsisThe remote VMware ESXi host is missing a security patch and is affected by an information disclosure vulnerability.
DescriptionThe remote VMware ESXi host is version 5.5, 6.0, 6.5, or 6.7 and is missing a security patch. It is, therefore, vulnerable to an information disclosure vulnerability. The vulnerability exists in the speculative execution control mechanism. An unauthenticated, local attacker can exploit this, via side-channel analysis, to disclose potentially sensitive information.
SolutionApply the appropriate patch as referenced in the vendor advisory.