🚨🚨🚨CVE-2025-22224, CVE-2025-22225, CVE-2025-22226: Zero-Day Vulnerabilities in VMware ESXi

Broadcom has issued an advisory regarding three vulnerabilities in various VMware products that have been actively exploited as zero-day attacks. Organizations are strongly encouraged to implement the available patches promptly.

CVE-2025-22224 : is a TOCTOU (Time-of-Check Time-of-Use) vulnerability in VMWare ESXi and Workstation. A local, authenticated attacker with admin privileges could exploit this vulnerability to gain code execution on the virtual-machine executable (VMX) process. (Vulnerability Score=9.3)

CVE-2025-22225 : is an arbitrary write vulnerability in VMware ESXi. A local, authenticated attacker with requisite privileges could exploit this vulnerability through the VMX process to escape the sandbox. (Vulnerability Score=8.2)

CVE-2025-22226 : is an information-disclosure vulnerability in VMware ESXi, Workstation and Fusion. An authenticated, local attacker with admin privileges could exploit this vulnerability to cause the VMX process to leak contents from memory. (Vulnerability Score=7.1)

Continue reading “Vulnerabilities in VMware ESXi” →