{"uuid": "70ada0bd-00d5-4ce3-af95-6eb4143a7e58", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22230", "type": "seen", "source": "https://t.me/thehackernews/6551", "content": "\ud83d\udea8 Broadcom just patched CVE-2025-22230, a 7.8 CVSS auth bypass in VMware Tools for Windows (v11.x.x & 12.x.x). No workaround. Fixed in v12.5.1\u2014patch now.\n\nAlso: CrushFTP v10 & v11 hit by unauth\u2019d HTTP(S) access bug. Not actively exploited, but still dangerous.\n\n\ud83d\udd17 Full details + patch links: https://thehackernews.com/2025/03/new-security-flaws-found-in-vmware.html", "creation_timestamp": "2025-03-26T05:27:01.000000Z"}