CVE-2025-22226

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process.

CVSS v3 7.1 HIGH

7.1^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.5 / Impact : 4.0

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact HIGH

Integrity Impact NONE

Availability Impact NONE

Scope CHANGED

References

Link	Resource
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390	Vendor Advisory
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22226	US Government Resource

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:vmware:esxi:7.0:-::::::
	cpe:2.3:o:vmware:esxi:7.0:beta::::::
	cpe:2.3:o:vmware:esxi:7.0:update_1::::::
	cpe:2.3:o:vmware:esxi:7.0:update_1a::::::
	cpe:2.3:o:vmware:esxi:7.0:update_1b::::::
	cpe:2.3:o:vmware:esxi:7.0:update_1c::::::
	cpe:2.3:o:vmware:esxi:7.0:update_1d::::::
	cpe:2.3:o:vmware:esxi:7.0:update_1e::::::
	cpe:2.3:o:vmware:esxi:7.0:update_2::::::
	cpe:2.3:o:vmware:esxi:7.0:update_2a::::::
	cpe:2.3:o:vmware:esxi:7.0:update_2c::::::
	cpe:2.3:o:vmware:esxi:7.0:update_2d::::::
	cpe:2.3:o:vmware:esxi:7.0:update_2e::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3c::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3d::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3e::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3f::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3g::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3i::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3j::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3k::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3l::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3m::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3n::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3o::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3p::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3q::::::
	cpe:2.3:o:vmware:esxi:7.0:update_3r::::::
	cpe:2.3:o:vmware:esxi:8.0:-::::::
	cpe:2.3:o:vmware:esxi:8.0:a::::::
	cpe:2.3:o:vmware:esxi:8.0:b::::::
	cpe:2.3:o:vmware:esxi:8.0:c::::::
	cpe:2.3:o:vmware:esxi:8.0:update_1::::::
	cpe:2.3:o:vmware:esxi:8.0:update_1a::::::
	cpe:2.3:o:vmware:esxi:8.0:update_1c::::::
	cpe:2.3:o:vmware:esxi:8.0:update_1d::::::
	cpe:2.3:o:vmware:esxi:8.0:update_2::::::
	cpe:2.3:o:vmware:esxi:8.0:update_2b::::::
	cpe:2.3:o:vmware:esxi:8.0:update_2c::::::
	cpe:2.3:o:vmware:esxi:8.0:update_3::::::
	cpe:2.3:o:vmware:esxi:8.0:update_3b::::::
	cpe:2.3:o:vmware:esxi:8.0:update_3c::::::

Configuration 2 (hide)

OR	cpe:2.3:a:vmware:cloud_foundation:-:::::::*
	cpe:2.3:a:vmware:fusion::::::::
	cpe:2.3:a:vmware:telco_cloud_infrastructure:2.2:::::::*
	cpe:2.3:a:vmware:telco_cloud_infrastructure:2.5:::::::*
	cpe:2.3:a:vmware:telco_cloud_infrastructure:2.7:::::::*
	cpe:2.3:a:vmware:telco_cloud_infrastructure:3.0:::::::*
	cpe:2.3:a:vmware:telco_cloud_platform:2.0:::::::*
	cpe:2.3:a:vmware:telco_cloud_platform:2.5:::::::*
	cpe:2.3:a:vmware:telco_cloud_platform:2.7:::::::*
	cpe:2.3:a:vmware:telco_cloud_platform:3.0:::::::*
	cpe:2.3:a:vmware:telco_cloud_platform:4.0:::::::*
	cpe:2.3:a:vmware:telco_cloud_platform:4.0.1:::::::*
	cpe:2.3:a:vmware:telco_cloud_platform:5.0:::::::*
	cpe:2.3:a:vmware:workstation::::::::

History

30 Oct 2025, 19:52

Type	Values Removed	Values Added
References	~~() https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22226 -~~	() https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22226 - US Government Resource

21 Oct 2025, 23:16

Type	Values Removed	Values Added
References		() https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22226 -

21 Oct 2025, 20:20

Type	Values Removed	Values Added
References	~~{'url': 'https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22226', 'source': '134c704f-9b21-4f2e-91b3-4a467353bcc0'}~~

21 Oct 2025, 19:21

Type	Values Removed	Values Added
Summary		(es) VMware ESXi, Workstation y Fusion contienen una vulnerabilidad de divulgación de información debido a una lectura fuera de los límites en HGFS. Un actor malintencionado con privilegios administrativos en una máquina virtual podría aprovechar este problema para filtrar memoria del proceso vmx.
First Time		Vmware workstation Vmware telco Cloud Infrastructure Vmware Vmware telco Cloud Platform Vmware esxi Vmware fusion Vmware cloud Foundation
CPE		cpe:2.3:a:vmware:telco_cloud_platform:2.7:::::::* cpe:2.3:o:vmware:esxi:7.0:update_3d:::::: cpe:2.3:a:vmware:telco_cloud_platform:5.0:::::::* cpe:2.3:o:vmware:esxi:8.0:update_1c:::::: cpe:2.3:o:vmware:esxi:7.0:beta:::::: cpe:2.3:o:vmware:esxi:8.0:-:::::: cpe:2.3:o:vmware:esxi:7.0:update_3p:::::: cpe:2.3:o:vmware:esxi:8.0:update_2:::::: cpe:2.3:o:vmware:esxi:7.0:update_3q:::::: cpe:2.3:o:vmware:esxi:8.0:update_3:::::: cpe:2.3:o:vmware:esxi:8.0:update_3b:::::: cpe:2.3:o:vmware:esxi:7.0:-:::::: cpe:2.3:o:vmware:esxi:7.0:update_3r:::::: cpe:2.3:o:vmware:esxi:8.0:b:::::: cpe:2.3:o:vmware:esxi:8.0:update_2b:::::: cpe:2.3:o:vmware:esxi:7.0:update_2d:::::: cpe:2.3:o:vmware:esxi:8.0:update_1d:::::: cpe:2.3:a:vmware:telco_cloud_infrastructure:2.2:::::::* cpe:2.3:o:vmware:esxi:7.0:update_3k:::::: cpe:2.3:o:vmware:esxi:7.0:update_3l:::::: cpe:2.3:a:vmware:telco_cloud_infrastructure:3.0:::::::* cpe:2.3:a:vmware:workstation:::::::: cpe:2.3:o:vmware:esxi:7.0:update_3o:::::: cpe:2.3:o:vmware:esxi:7.0:update_1c:::::: cpe:2.3:a:vmware:cloud_foundation:-:::::::* cpe:2.3:o:vmware:esxi:7.0:update_3c:::::: cpe:2.3:o:vmware:esxi:7.0:update_2a:::::: cpe:2.3:o:vmware:esxi:7.0:update_1b:::::: cpe:2.3:o:vmware:esxi:7.0:update_3:::::: cpe:2.3:a:vmware:telco_cloud_platform:2.5:::::::* cpe:2.3:o:vmware:esxi:7.0:update_2c:::::: cpe:2.3:o:vmware:esxi:8.0:update_3c:::::: cpe:2.3:a:vmware:telco_cloud_platform:3.0:::::::* cpe:2.3:o:vmware:esxi:7.0:update_3e:::::: cpe:2.3:o:vmware:esxi:7.0:update_3j:::::: cpe:2.3:a:vmware:telco_cloud_infrastructure:2.5:::::::* cpe:2.3:o:vmware:esxi:7.0:update_1d:::::: cpe:2.3:o:vmware:esxi:7.0:update_2:::::: cpe:2.3:o:vmware:esxi:7.0:update_3f:::::: cpe:2.3:o:vmware:esxi:8.0:a:::::: cpe:2.3:o:vmware:esxi:7.0:update_2e:::::: cpe:2.3:a:vmware:telco_cloud_infrastructure:2.7:::::::* cpe:2.3:o:vmware:esxi:7.0:update_1e:::::: cpe:2.3:o:vmware:esxi:7.0:update_3g:::::: cpe:2.3:o:vmware:esxi:7.0:update_3m:::::: cpe:2.3:a:vmware:telco_cloud_platform:2.0:::::::* cpe:2.3:o:vmware:esxi:8.0:update_2c:::::: cpe:2.3:a:vmware:fusion:::::::: cpe:2.3:o:vmware:esxi:7.0:update_1:::::: cpe:2.3:o:vmware:esxi:8.0:update_1:::::: cpe:2.3:o:vmware:esxi:7.0:update_1a:::::: cpe:2.3:a:vmware:telco_cloud_platform:4.0:::::::* cpe:2.3:o:vmware:esxi:7.0:update_3i:::::: cpe:2.3:o:vmware:esxi:7.0:update_3n:::::: cpe:2.3:o:vmware:esxi:8.0:c:::::: cpe:2.3:o:vmware:esxi:8.0:update_1a:::::: cpe:2.3:a:vmware:telco_cloud_platform:4.0.1:::::::*
References		() https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22226 -
References	~~() https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390 -~~	() https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390 - Vendor Advisory

04 Mar 2025, 16:15

Type	Values Removed	Values Added
CWE		CWE-125

04 Mar 2025, 12:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2025-03-04 12:15

Updated : 2025-10-30 19:52

NVD link : CVE-2025-22226

Mitre link : CVE-2025-22226

CVE.ORG link : CVE-2025-22226

JSON object : View

Products Affected

vmware

fusion
telco_cloud_platform
esxi
workstation
cloud_foundation
telco_cloud_infrastructure

CWE

CWE-125

Out-of-bounds Read

7.1 /10