CVE-2025-22226
CVE-2025-22226
Vexday Risk Score
51Attention
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
CVSS 7.1EPSS 1.7%KEV simPoC —Nuclei —Metasploit —Patch —
Lifecycle
04 Mar 2025Active exploitation (CISA KEV)
04 Mar 2025Published on NVD
Recommendation: Patch as soon as possible — active exploitation confirmed.
In short
VMware virtualization products have a flaw where a VM administrator can read memory from the VMware process by exploiting a reading error in the file-sharing feature, potentially exposing sensitive data.
Technical detail
An out-of-bounds read vulnerability in HGFS (Host-Guest File System) allows an authenticated attacker with VM administrative privileges to leak arbitrary memory from the vmx process. The vulnerability requires local access to the virtual machine and could expose sensitive information stored in the hypervisor's memory.
Summary generated and translated by AI from the official description.
VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N