@JohannaLeon
I would ask them for more evidence as to what ESXi vulnerabilities they think you have in your environment, and review the advisories here: https://www.vmware.com/security/advisories.html
-------------------------------------------------------------------------------------------------------------------------------------------------------------
Although I am a VMware employee I contribute to VMware Communities voluntarily (ie. not in any official capacity)
VMware Training & Certification blog
