Broadcom has security improvements to address three constantly exploited security flaws in VMware ESXi, Workstation, and Fusion items that could lead to code execution and information disclosure.
The listing of threats is as follows-
- CVE-2025-22224 ( CVSS score: 9.3 )- A Time-of-Check Time-of-Use ( TOCTOU) vulnerability that leads to an out-of-bounds write, which a malicious actor with local administrative privileges on a virtual machine could exploit to execute code as the virtual machine’s VMX process running on the host
- CVE-2025-22225 ( CVSS score: 8.2 )- An arbitrary write risk that a malicious professional with permissions within the VMX procedure could exploit to result in a sandbox avoid
- CVE-2025-22226 ( CVSS report: 7.1 )- An information disclosure risk due to an out-of-bounds read in HGFS that a destructive professional with administrative privileges to a virtual machine could utilize to drip memory from the vmx process
The inadequacies influence the below variations-
- VMware ESXi 8.0- Fixed in ESXi80U3d-24585383, ESXi80U2d-24585300
- VMware ESXi 7.0- Fixed in ESXi70U3s-24585291
- VMware Workstation 17. x- Fixed in 17.6.3
- VMware Fusion 13. x- Fixed in 13.6.3
- VMware Cloud Foundation 5. x- Ajax piece to ESXi80U3d-24585383
- VMware Cloud Foundation 4. x- Ajax piece to ESXi70U3s-24585291
- VMware Telco Cloud Platform 5. by, 4. by, 3. x, 2. x- Fixed in ESXi 7.0U3s, ESXi 8.0U2d, and ESXi 8.0U3d
- VMware Telco Cloud Infrastructure 3. by, 2. x- Fixed in ESXi 7.0U3s
In a split FAQ, Broadcom that it has “information to suggest that abuse of these issues has occurred’ in the wild,’ but it did not elaborate on the nature of the problems or the identity of the threat actors that have weaponized them.
The cloud service provider credited the Microsoft Threat Intelligence Center for discovering and reporting the insects. In light of lively exploitation, it’s important that users use the latest patches for optimum protection.
Found this post interesting? Following us on and to read more unique content we publish.