Broadcom alerts customers about critical vulnerabilities in VMware, with a total of 3 reported exploits detected by the Microsoft Threat Intelligence Center. Attackers could potentially gain access at an admin or root level, bypassing sandbox protections and reaching the hypervisor. It is strongly recommended for customers to patch their systems promptly.
Impacted VMware products include VMware ESXi, vSphere, Workstation, Fusion, Cloud Foundation, and Telco Cloud Platform. The 3 vulnerabilities are CVE-2025-22224, a VCMI Heap Overflow flaw, CVE-2025-22225 allowing for core control by VMX, and CVE-2025-22226, an HGFS access vulnerability.
Source: Bleeping Computer
TLDR: Broadcom warns of critical VMware vulnerabilities, urging customers to quickly patch their systems to prevent potential exploits.
Leave a Comment