Summary: Broadcom has released security updates to address a high-severity authentication bypass vulnerability (CVE-2025-22230) in VMware Tools for Windows, which allows local attackers to escalate privileges without user interaction. The vulnerability was reported by a cybersecurity firm and is of particular concern given the frequent targeting of VMware products by ransomware gangs and state-sponsored hackers. This update follows the patching of several VMware zero-day vulnerabilities that were already being exploited.
Affected: VMware Tools for Windows
Keypoints :
- Vulnerability CVE-2025-22230 allows local attackers with low privileges to gain high privileges on vulnerable VMs.
- Broadcom previously patched three VMware zero-day vulnerabilities linked to active exploitation.
- VMware products are commonly targeted due to their widespread use for storing or transferring sensitive corporate data.