3 different VMware zero days, under active exploitation by ransomware groups
CVE-2025-22224, CVE-2025-22225, CVE-2025-22226
VMware ESXi
VMware Workstation Pro / Player (Workstation)
VMware Fusion
VMware Cloud Foundation
VMware Telco Cloud Platform
(Exploitation actually ESXi)
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390
Kevin Beaumont /
npub1lc…6lcye
2025-03-04 14:19:26
Author Public Key
npub1lcc6wn885u6k395x5j5tmdm94r6dh9zajxm8gyk82pv2s2j3el7sc6lcyePublished at
2025-03-04 14:19:26Event JSON
{
"id": "0023f9c508e24b8a518661e33452c0737fbf4a618776be48330c3e6c5aea451f",
"pubkey": "fe31a74ce7a735689686a4a8bdb765a8f4db945d91b67412c75058a82a51cffd",
"created_at": 1741097966,
"kind": 1,
"tags": [
[
"proxy",
"https://cyberplace.social/@GossiTheDog/114104596316369139",
"web"
],
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/114104596316369139",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://cyberplace.social/users/GossiTheDog/statuses/114104596316369139",
"pink.momostr"
],
[
"-"
]
],
"content": "3 different VMware zero days, under active exploitation by ransomware groups\n\nCVE-2025-22224, CVE-2025-22225, CVE-2025-22226\n\nVMware ESXi\nVMware Workstation Pro / Player (Workstation)\nVMware Fusion\nVMware Cloud Foundation\nVMware Telco Cloud Platform\n\n(Exploitation actually ESXi)\n\nhttps://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390",
"sig": "efe3c6bea7ecaba99961564f677e330af5e33fee120b64a5e73eec2fca1f4913ac656e7b80a11a27f358c84d78dcdd768152a16d98a2d9c5da6ea8ce1c70ab54"
}