CVE-2025-22226

HIGH KEV RANSOMWARE

VMware ESXi, Workstation, and Fusion - Info Disclosure

Title source: llm

Description

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process.

References (2)

[Vendor Advisory] https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390

[US Government Resource] https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22226

Scores

CVSS v3 7.1

EPSS 0.0432

EPSS Percentile 88.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Details

CISA KEV 2025-03-04

VulnCheck KEV 2025-03-04

ENISA EUVD EUVD-2025-7605

Ransomware Use Confirmed

CWE

CWE-125

Status published

Products (9)

vmware/cloud_foundation

vmware/esxi 7.0 (29 CPE variants)

vmware/esxi 8.0 (14 CPE variants)

vmware/fusion 13.0.0 - 13.6.3

vmware/telco_cloud_infrastructure 2.2

vmware/telco_cloud_infrastructure 2.5

vmware/telco_cloud_infrastructure 2.7

vmware/telco_cloud_infrastructure 3.0

vmware/telco_cloud_platform 2.0

Published Mar 04, 2025

KEV Added Mar 04, 2025

Tracked Since Feb 18, 2026