CVE-2025-22225HIGH 8.2CISA KEVEPSS p57.0%

CVE-2025-22225VMware ESXi Arbitrary Write Vulnerability

VMware / ESXi

Description

VMware ESXi contains an arbitrary write vulnerability. Successful exploitation allows an attacker with privileges within the VMX process to trigger an arbitrary kernel write leading to an escape of the sandbox.

Scoring

CVSS 3.18.2 (HIGH)
VectorCVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
EPSS0.96% probability of exploitation · percentile 57.0% · 2026-06-19T12:03:05Z
Published2025-03-04
Last modified2025-10-30

CISA KEV entry

Added to KEV: 2025-03-04

Underlying weaknesses· 2

CWE-787CWE-123

References

  1. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390
  2. https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-22225

2

TypeTargetConfidenceTier
WeaknessWrite-what-where Conditioncwe-1230%live
WeaknessOut-of-bounds Writecwe-7870%live

(incoming)1

TypeTargetConfidenceTier
KEVEntryVMware ESXi Arbitrary Write Vulnerabilitykev-cve-2025-222250%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability
CVE
CVE-2025-41237
CVE
CVE-2025-41238
CVE
VMware ESXi and Workstation TOCTOU Race Condition Vulnerability
CVE
CVE-2025-41236
CVE
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability
Sourced from NVD + CISA KEV + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.