CVE-2020-3992 status=patched source=vuln-scan
CVE-2021-22005 status=not-observed source=threat-feed
note=Feed includes broad ESXi/vCenter exposure data not necessarily exploited in this incident.