CVE-2025-22224HIGH 8.2CISA KEVEPSS p71.4%

CVE-2025-22224VMware ESXi and Workstation TOCTOU Race Condition Vulnerability

VMware / ESXi and Workstation

Description

VMware ESXi and Workstation contain a time-of-check time-of-use (TOCTOU) race condition vulnerability that leads to an out-of-bounds write. Successful exploitation enables an attacker with local administrative privileges on a virtual machine to execute code as the virtual machine's VMX process running on the host.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS1.52% probability of exploitation · percentile 71.4% · 2026-06-18T12:00:27Z
Published2025-03-04
Last modified2025-10-30

CISA KEV entry

Added to KEV: 2025-03-04

Underlying weaknesses· 1

CWE-367

References

  1. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390
  2. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22224

1

TypeTargetConfidenceTier
WeaknessTime-of-check Time-of-use (TOCTOU) Race Conditioncwe-3670%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryVMware ESXi and Workstation TOCTOU Race Condition Vulnerabilitykev-cve-2025-222240%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-41237
CVE
VMware ESXi Arbitrary Write Vulnerability
CVE
Microsoft Windows Kernel TOCTOU Race Condition Vulnerability
CVE
Linux Kernel Time-of-Check Time-of-Use (TOCTOU) Race Condition Vulnerability
CVE
CVE-2025-41238
CVE
VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.