Broadcom has issued a security advisory highlighting three zero-day vulnerabilities in its VMware products, specifically ESXi, Workstation, and Fusion. CVE-2025-22224 is the most severe, rated 9.3 on the CVSS, and can be exploited to execute code on the host. Other vulnerabilities, like CVE-2025-22225, allow for arbitrary writes that could lead to sandbox escapes. Researchers from Microsoft's Threat Intelligence Center discovered these flaws, with indications that they are already being exploited in attacks, prompting a warning from CISA about potential chaining of these vulnerabilities during exploit attempts.
All three CVEs could be chained together in an attack, allowing a malicious actor to escalate their privileges once they have compromised a virtual machine.
Broadcom warns that these vulnerabilities are already being targeted by attackers, with known exploitation occurring in the wild.
Collection
[
|
...
]