CVE-2025-22224 - VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

CVE ID:CVE-2025-22224

Project:VMware

Product:ESXi and Workstation

Date Added:2025-03-04Due Date:2025-03-25

Vulnerability Name

VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

Description

VMware ESXi and Workstation contain a time-of-check time-of-use (TOCTOU) race condition vulnerability that leads to an out-of-bounds write. Successful exploitation enables an attacker with local administrative privileges on a virtual machine to execute code as the virtual machine's VMX process running on the host.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.

Additional Notes

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390

https://nvd.nist.gov/vuln/detail/CVE-2025-22224

Related News Articles

Broadcom warns of authentication bypass in VMware Windows ToolsMarch 26, 2025

⚡ THN Weekly Recap: New Attacks, Old Tricks, Bigger ImpactMarch 10, 2025

Over 37,000 VMware ESXi servers vulnerable to ongoing attacksMarch 6, 2025

VMware Security Flaws Exploited in the Wild—Broadcom Releases Urgent PatchesMarch 4, 2025

Broadcom fixes three VMware zero-days exploited in attacksMarch 4, 2025

Latest Security News

Top CVE List

Top Alert List

CSP
Content Security Policy (CSP) Header Not Set
MediumAbsence of Anti-CSRF Tokens
MediumMissing Anti-clickjacking Header
InformationalInformation Disclosure - Suspicious Comments
LowCross-Domain JavaScript Source File Inclusion
MediumContent Security Policy (CSP) Header Not Set
LowTimestamp Disclosure - Unix
LowCSP: X-Content-Security-Policy
InformationalRe-examine Cache-control Directives

Top CWE List