Security Advisory

CVE-2025-22224

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-03-04 11:56:12

Last updated 2026-02-26 19:09:47

Assigner vmware

State PUBLISHED

Description

VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machines VMX process running on the host.

← Browse all CVEs View on cve.org ↗