I have a dell poweredge r620 that is running some windows server guests (hypervisor is ESXi 6.5 build 7388607). I was under the impression that the combination of the hypervisor build and the latest bios would take care of it, but running some scripts from GitHub on the hypervisor and the speculationcontrolsettings report on the guests would lead me to believe there is still some work to do. Both report the vulnerabilities still exist.
When upgrading the hypervisor I used command line "esxcli software vib update path\esxi650-20171201.zip" to get to the build number listed above. Can any experts out there give me an idea of what I could be overlooking?