VMware, Broadcom

Broadcom urges VMware customers to patch ‘emergency’ zero-day bugs under active exploitation
Broadcom, which acquired VMware in 2023, said that the vulnerabilities (tracked as CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226) could allow an attacker with administrator or root privileges on a virtual machine to escape its protected sandbox and gain broader unauthorized access to the underlying hypervisor product.
Broadcom urges customers to patch 3 zero-day VMware flaws
Cyberattackers with administrative access are actively exploiting vulnerabilities in ESXi, Workstation and Fusion products.
Broadcom Patches 3 VMware Zero-Days Exploited in the Wild
Broadcom patched VMware zero-days CVE-2025-22224, CVE-2025-22225 and CVE-2025-22226 after Microsoft warned it of exploitation. Broadcom released a security alert on Tuesday morning to warn VMware customers about three zero-days that have been exploited in the wild.
VMware Security Flaws Exploited in the Wild—Broadcom Releases Urgent Patches
Broadcom patches three actively exploited VMware flaws, including a critical (CVSS 9.3) bug enabling code execution. Update now for protection.
VMware ESXi gets critical patches for in-the-wild virtual machine escape attack
Broadcom has patched three vulnerabilities in the VMware ESXi hypervisor and related products, with Microsoft reporting the flaws are being actively exploited to take control of host systems.
VMware patches guest-to-hypervisor escape flaws already under attack
The heap overflow in the memory unsafe code by Miss Creant Broadcom today pushed out patches for three VMware hypervisor-hijacking bugs, including one rated critical, that have already been found and exploited by criminals.
SecurityWeek18m
Exploited VMware ESXi Flaws Put Many at Risk of Ransomware, Other Attacks
Tens of thousands of VMware ESXi instances are affected by CVE-2025-22224 and other vulnerabilities disclosed recently as ...
PCQuest on MSN4h
VMware Flaws Under Attack – Patch Now, CISA Warns!
CISA alerts on VMware flaws under attack, urging immediate patching to prevent data breaches, hypervisor takeovers, and cyber ...
Threat posed by new VMware hyperjacking vulnerabilities is hard to overstate
VMware warned Tuesday that it has evidence suggesting the vulnerabilities are already under active exploitation in the wild. The company didn't elaborate. Beaumont said the vulnerabilities affect ...
Broadcom releases fixes for multiple VMware security flaws
Broadcom releases fix for three vulnerabilities being abused in the wild The bugs were described as VM escape flaws The ...
CRN20h
Nutanix Is Navigating Migration Times, Cost To Meet VMware Opportunity
The opportunity for solution providers to migrate VMware customers to alternatives is well understood by the channel–and one ...
2024 Comp for Broadcom's Mark Brazeak Ranks Among Highest Ever for a Legal Chief
The compensation committee heaped praise on Brazeak for gaining regulatory approvals for Broadcom's $69 billion acquisition ...
CIO8d
Kyndryl: The largest manager of VMware assets is busier than ever in the cloud
The world’s largest IT infrastructure provider and the largest manager of VMware assets in the world sees greater demand and ...
Hosted on MSN2d
Broadcom starts beta for VMware Cloud Foundation 9, the release it reckons will douse user anger
Pricing, licensing changes won't feel so bad once you take this private cloud stack for a spin, apparently Exclusive Broadcom ...