VMSA-2025-0004: VMware ESXi arbitrary write vulnerability (CVE-2025-22225)
7
(AV:L/AC:L/Au:S/C:C/I:C/A:C)
03/04/2025
03/10/2025
03/04/2025
03/27/2025
Description
VMware ESXi contains an arbitrary write vulnerability. A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox.
Solution(s)
- vmware-esxi67-upgrade-24514018
- vmware-esxi700-upgrade-24585291
- vmware-esxi701-upgrade-24585291
- vmware-esxi702-upgrade-24585291
- vmware-esxi703-upgrade-24585291
- vmware-esxi800-upgrade-24585300
- vmware-esxi801-upgrade-24585300
- vmware-esxi802-upgrade-24585300
- vmware-esxi803-upgrade-24585383
Advanced vulnerability management analytics and reporting.
Key Features
- Lightweight Endpoint Agent
- Live Dashboards
- Real Risk Prioritization
- IT-Integrated Remediation Projects
- Cloud, Virtual, and Container Assessment
- Integrated Threat Feeds
- Easy-to-Use RESTful API
- Automation-Assisted Patching
- Automated Containment
With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.
– Scott Cheney, Manager of Information Security, Sierra View Medical Center