CVE-2025-22230

High CVSS: 7.8

VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control. A malicious actor with non-administrative privileges on a guest VM may gain ability to perform certain high privilege operations within that VM.

Vendor

Product

CWE

CWE-288

Yayın Tarihi

2025-03-25 14:15:28

Güncelleme

2025-03-27 16:45:46

Source Identifier

security@vmware.com

KEV Date Added

Kategoriler

CWE-288 HIGH 2025

Referanslar

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25518