New Security Flaws Found in VMware Tools and CrushFTP — High Risk, PoC Released

2025-03-26 04:20

Broadcom has issued security patches to address a high-severity security flaw in VMware Tools for Windows that could lead to an authentication bypass. Tracked as CVE-2025-22230, the vulnerability is rated 7.8 on the ten-point Common Vulnerability Scoring System (CVSS). "VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control," Broadcom said in an

News URL

https://thehackernews.com/2025/03/new-security-flaws-found-in-vmware.html

#POC #security #tools #vmware #CVE-2025-22230

Related Vulnerability

DATE	CVE	VULNERABILITY TITLE	RISK
2025-03-25	CVE-2025-22230	VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control. A malicious actor with non-administrative privileges on a guest VM may gain ability to perform certain high privilege operations within that VM.	0.0

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Vmware		148	11	227	260	102	600
Crushftp		1	0	6	0	3	9

News URL

Related news

Related Vulnerability

Related vendor