Kritikus hibát javít a Broadcom az ESXi 7,8 legújabb frissítéseiben

Bejelentés

VMSA-2025-0004: VMware ESXi, Workstation, and Fusion updates address multiple vulnerabilities (CVE-2025-22224, CVE-2025-22225, CVE-2025-22226)

Érintett termékek

• VMware ESXi
• VMware Workstation Pro / Player (Workstation)
• VMware Fusion
• VMware Cloud Foundation
• VMware Telco Cloud Platform

Ismert támadási vektor

A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host. 

Biztonsági válaszlépések mátrixa

VMware Product      Version      Running On    CVE                                                                                Severity     Fixed Version              Workarounds   Add. Documentation

VMware ESXi             8.0              Any                 CVE-2025-22224, CVE-2025-22225, CVE-2025-22226         Critical        ESXi80U3d-24585383     None                 FAQ

VMware ESXi             8.0              Any                 CVE-2025-22224, CVE-2025-22225, CVE-2025-22226         Critical        ESXi80U2d-24585300     None                 FAQ

VMware ESXi             7.0              Any                 CVE-2025-22224, CVE-2025-22225, CVE-2025-22226         Critical        ESXi70U3s-24585291     None                 FAQ