Vulnerability Details : CVE-2025-22225
VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox.
Products affected by CVE-2025-22225
- cpe:2.3:o:vmware:esxi:*:*:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:*:*:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:-:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:beta:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_1:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_1a:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_1b:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_1c:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_1d:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_2:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_2a:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_2c:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_2d:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3e:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3d:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_2e:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3c:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_1e:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3g:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3f:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:-:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:a:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:b:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:c:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_1:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_1a:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_1c:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_1d:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_2:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_2b:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_2c:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_3:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3i:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3j:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3k:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3l:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3m:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3n:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3o:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3p:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_3b:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:8.0:update_3c:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3q:*:*:*:*:*:*
- cpe:2.3:o:vmware:esxi:7.0:update_3r:*:*:*:*:*:*
- cpe:2.3:a:vmware:cloud_foundation:-:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_platform:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_platform:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_platform:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_platform:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_platform:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_platform:4.0.1:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_platform:5.0:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_infrastructure:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_infrastructure:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_infrastructure:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:vmware:telco_cloud_infrastructure:3.0:*:*:*:*:*:*:*
CVE-2025-22225 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
VMware ESXi Arbitrary Write Vulnerability
CISA required action:
Apply mitigations per vendor instructions, follow applicable BOD 22-01 guidance for cloud services, or discontinue use of the product if mitigations are unavailable.
CISA description:
VMware ESXi contains an arbitrary write vulnerability. Successful exploitation allows an attacker with privileges within the VMX process to trigger an arbitrary kernel write leading to an escape of the sandbox.
Notes:
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390 ; https://nvd.nist.gov/vuln/detail/CVE-2025-22225
Added on
2025-03-04
Action due date
2025-03-25
Exploit prediction scoring system (EPSS) score for CVE-2025-22225
11.79%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 93 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2025-22225
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
8.2
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
1.5
|
6.0
|
NIST | 2025-04-10 |
|
8.2
|
HIGH | CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H |
1.5
|
6.0
|
VMware | 2025-03-04 |
CWE ids for CVE-2025-22225
-
Any condition where the attacker has the ability to write an arbitrary value to an arbitrary location, often as the result of a buffer overflow.Assigned by: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Primary)
-
The product writes data past the end, or before the beginning, of the intended buffer.Assigned by: nvd@nist.gov (Secondary)
References for CVE-2025-22225
-
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390
Support Content Notification - Support Portal - Broadcom support portalVendor Advisory
Jump to