Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-22230

VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control. A malicious actor with non-administrative privileges on a guest VM may gain ability to perform certain high privilege operations within that VM.

Published

2025-03-25T14:15:28.440

Last Modified

2025-03-27T16:45:46.410

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 7.8 (HIGH)

Weaknesses

Type: Secondary
CWE-288

Affected Vendors & Products

References

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25518 ([email protected])