Broadcom Releases Security Advisory for VMware Tools for Windows

CVE-2025-22230 is an authentication bypass vulnerability in VMware Tools for Windows

Threat ID:: CC-4637
Threat Severity:: Medium
Published:: 25 March 2025 4:53 PM

Report a cyber attack: call 0300 303 5222 or email [email protected]

Summary

CVE-2025-22230 is an authentication bypass vulnerability in VMware Tools for Windows

Affected platforms

The following platforms are known to be affected:

VMware Tools

VMware Tools for Windows: version 11, version 12 prior to 12.5.1

Threat details

Introduction

Broadcom has released a security advisory addressing a high severity vulnerability in VMware Tools for Windows. VMware Tools is a suite of utilities that enhances the performance of VMware virtual machines and provides extra functionality.

CVE-2025-22230 is an authentication bypass due to improper access control vulnerability with a CVSSv3 score of 7.8. If exploited, an attacker with non-administrative privileges on a Windows guest virtual machine (VM) could perform certain high-privilege operations within that VM.

Remediation advice

Affected organisations are encouraged to review Broadcom's VMware advisory VMSA-2025-0005 and apply the relevant updates as soon as practicable.

Definitive source of threat updates

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25518

CVE Vulnerabilities

Status Published

CVE-2025-22230

VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control. A malicious actor with non-administrative privileges on a guest VM may gain ability to perform certain high privilege operations within that VM.

Last edited: 25 March 2025 4:54 pm