VDB

CVE-2025-22225

CVE-2025-22225 PUBLISHED KEV

------------ On March 4, 2025 Broadcom released a critical VMware Security Advisory (VMSA), VMSA-2025-0004, addressing security vulnerabilities found and resolved in VMware ESX regarding a mechanism where threat actors could access the hypervisor through a running virtual machine. The advisory references patches applicable to all supported versions of VMware ESX. All customers should apply these updates. The VMSA will always be the source of truth for what products & versions are affected and proper patches to keep your organization secure. This document is a corollary to the advisory and includes self-service information to help you and your organization decide how to respond. You are affected if you are running any version of VMware ESX, VMware vSphere, VMware Cloud Foundation, or VMware Telco Cloud Platform prior to the versions listed as “fixed” in the VMSA. Please consult the VMSA itself for the definitive list of affected versions. If you have a question about whether you are affected it is probable that you are, and should take action immediately. **If you are experiencing issues with the Broadcom Support Portal** please see the section below entitled ["I currently have an active entitlement however I cannot see all the fixed versions relating to the VMSA"](https://github.com/vmware/vcf-security-and-compliance-guidelines/tree/main/security-advisories/vmsa-2025-0004#i-currently-have-an-active-entitlement-however-i-cannot-see-all-the-fixed-versions-relating-to-the-vm

EPSS 9.78% · 93.1th percentile

Risk Scores

EPSS Score
9.78%
93.1th percentile

Timeline

  • Mar 3, 2025 CVE Published
  • Mar 4, 2025 CISA KEV Added
  • Mar 4, 2025 PoC Published
  • Mar 5, 2025 EPSS Score
  • Mar 6, 2025 Coalition ESS Score
  • Mar 6, 2025 CVE Updated
  • Mar 12, 2025 EPSS Score
  • Mar 17, 2025 EPSS Score
  • Mar 19, 2025 EPSS Score
  • Mar 27, 2025 EPSS Score
  • Mar 28, 2025 EPSS Score
  • Mar 29, 2025 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›