CISA Releases Seven Industrial Control Systems Advisories

CISA released seven Industrial Control Systems ICS advisories on March 18, 2025. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS. ICSA-25-077-01 Schneider Electric EcoStruxure Power Automation System User Interface EPAS-UI...

Akira Ransomware Bruteforcer

This tool helps decrypt encrypted files from Akira Ransomware Linux/ESXI variant 2024 using a bunch of GPUs...

Photon OS 4.0: Binutils PHSA-2025-4.0-0767

An update of the binutils package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0767. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2025-21862 drop_monitor: fix incorrect initialization order

In the Linux kernel, the following vulnerability has been resolved: dropmonitor: fix incorrect initialization order Syzkaller reports the following bug: BUG: spinlock bad magic on CPU1, syz-executor.0/7995 lock: 0xffff88805303f3e0, .magic: 00000000, .owner: /-1, .ownercpu: 0 CPU: 1 PID: 7995 Comm...

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP5 kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2022-36280: Fixed out-of-bounds memory access vulnerability found in vmwgfx driver bsc1203332. CVE-2022-48742: rtnetlink: make sure to refresh masterdev/mops in...

VMware vCenter Server 8.0.2 Privilege Escalation

VMware vCenter Server version 8.0.2 proof of concept privilege escalation exploit that leverages a vulnerability from 2024. ============================================================================================================================================= | Title : VMware vCenter Server...

Photon OS 4.0: Rubygem PHSA-2025-4.0-0765

An update of the rubygem package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0765. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 5.0: Rubygem PHSA-2025-5.0-0485

An update of the rubygem package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0485. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Gettext PHSA-2025-4.0-0765

An update of the gettext package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-4.0-0765. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2025-22226

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process...

CVE-2025-22224

VMware ESXi, and Workstation contain a TOCTOU Time-of-Check Time-of-Use vulnerability that leads to an out-of-bounds write. A malicious actor with local administrative privileges on a virtual machine may exploit this issue to execute code as the virtual machine's VMX process running on the host...

CVE-2025-22225

VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox...

The vulnerability of the VMware ESXi hypervisor, the VMware Cloud Foundation virtualization platform, the VMware Telco Cloud Platform telecommunications cloud platform, and the VMware Telco Cloud Infrastructure involves writing arbitrary values anywhere and overflowing buffers. This allows attackers to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of VMware ESXi hypervisor, the VMware Cloud Foundation virtualization platform, the VMware Telco Cloud Platform telecommunications cloud platform, and the VMware Telco Cloud Infrastructure are related to writing arbitrary values anywhere and overwriting buffers. Exploiting this...

Vulnerability of the hypervisor in VMware ESXi, VMware Workstation, VMware Fusion, the virtualization platform VMware Cloud Foundation, the telecommunications cloud platform VMware Telco Cloud Platform, and VMware Telco Cloud Infrastructure—related to reading beyond the allowed range in memory, allowing an intruder to gain unauthorized access to protected information.

The vulnerability of VMware ESXi, VMware Workstation, VMware Fusion, the virtualization platform VMware Cloud Foundation, the telecommunications cloud platform VMware Telco Cloud Platform, and VMware Telco Cloud Infrastructure is related to reading data beyond the allowed range in memory...

VMware ESXi 7.0 / 8.0 Out-of-bounds Write (CVE-2025-22224)

The version of VMware ESXi installed on the remote host is 7.0 prior to 7.0 Update 3s, 8.0 Update 2 prior to 8.0 Update 2d, or 8.0 Update 3 prior to 8.0 Update 3d. It is, therefore, affected by an out-of-bounds write vulnerability: - VMware ESXi, and Workstation contain a TOCTOU Time-of-Check...

The vulnerability of VMware ESXi and VMware Workstation relates to synchronization errors when using shared resources, allowing a hacker to execute arbitrary code.

The vulnerability of VMware ESXi and VMware Workstation lies in synchronization errors when using shared resources „Race Conditions“. Exploiting this vulnerability can allow an attacker to execute arbitrary code...

Linux Distros Unpatched Vulnerability : CVE-2023-1544

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in the QEMU implementation of VMWare's paravirtual RDMA device. This flaw allows a crafted guest driver to allocate and initialize a huge numbe...

VMware ESXi 7.0 / 8.0 Sandbox Escape (CVE-2025-22225)

The version of VMware ESXi installed on the remote host is 7.0 prior to 7.0 Update 3s, 8.0 Update 2 prior to 8.0 Update 2d, or 8.0 Update 3 prior to 8.0 Update 3d. It is, therefore, affected by a sandbox escape vulnerability: - VMware ESXi contains an arbitrary write vulnerability. A malicious...

VMware ESXi 7.0 / 8.0 Information Disclosure (CVE-2025-22226)

The version of VMware ESXi installed on the remote host is 7.0 prior to 7.0 Update 3s, 8.0 Update 2 prior to 8.0 Update 2d, or 8.0 Update 3 prior to 8.0 Update 3d. It is, therefore, affected by an information disclosure vulnerability: - VMware ESXi, Workstation, and Fusion contain an information...

VMware Workstation Multiple Vulnerabilities (VMSA-2025-0004) - Windows

VMware Workstation is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:vmware:workstation";...