{"vulnerability": "CVE-2025-22225", "sightings": [{"uuid": "d629ecdb-689f-4be0-b0ad-0cd87c678ad7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/S_E_Reborn/5468", "content": "\u0421\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0435\u0439 \u0442\u0440\u0435\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0434\u043d\u044f\u0445 0-day VMware \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u0442\u0435\u043f\u0435\u0440\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a ESXicape \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0442\u044b\u0441\u044f\u0447 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432, \u043e \u0447\u0435\u043c \u0441\u0432\u0438\u0434\u0435\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0443\u044e\u0442 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f.\n\n4 \u043c\u0430\u0440\u0442\u0430 Broadcom \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 ESXi, Workstation \u0438 Fusion \u043e \u0432\u044b\u043f\u0443\u0441\u043a\u0435 \u0441\u0440\u043e\u0447\u043d\u044b\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u0434\u043b\u044f CVE-2025-22224, CVE-2025-22225 \u0438 CVE-2025-22226, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430, \u0432\u044b\u0445\u043e\u0434\u0443 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b \u0438 \u0443\u0442\u0435\u0447\u043a\u0430\u043c \u043f\u0430\u043c\u044f\u0442\u0438.\u00a0\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043e\u043a \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f Microsoft Threat Intelligence Center (\u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, Microsoft \u0442\u0430\u043a\u0436\u0435 \u0432\u0438\u0434\u0435\u043b\u0430 \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c 0-day), \u043d\u043e \u043d\u0438 Broadcom, \u043d\u0438 Microsoft \u043d\u0435 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0435\u0439 \u043e \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u043e\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Netlas \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e\u0431 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0438 \u0431\u043e\u043b\u0435\u0435 7000 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 VMware ESXi, \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u043d\u044b\u0445 \u043a \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0435, \u043f\u043e-\u0432\u0438\u0434\u0438\u043c\u043e\u043c\u0443, \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c.\u00a0\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Shadowserver Foundation \u0432\u044b\u044f\u0432\u0438\u043b\u0430 \u0431\u043e\u043b\u0435\u0435 41 000 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 ESXi, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u041a\u0438\u0442\u0430\u0435, \u0424\u0440\u0430\u043d\u0446\u0438\u0438, \u0421\u0428\u0410, \u0413\u0435\u0440\u043c\u0430\u043d\u0438\u0438, \u0418\u0440\u0430\u043d\u0435, \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u0438 \u0438 \u042e\u0436\u043d\u043e\u0439 \u041a\u043e\u0440\u0435\u0435 (\u0432 \u0420\u0424 - \u0431\u043e\u043b\u0435\u0435 700).\n\n\u0418\u0445 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0431\u044b\u043b\u0438 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 CVE-2025-22224, \u043d\u043e \u0434\u0435\u0442\u0435\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b \u0438 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0432\u0441\u0435 \u043e\u043d\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u043e\u0434\u043d\u0438 \u0438 \u0442\u0435 \u0436\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u041f\u041e.\n\n\u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u0438 PoC \u043f\u043e\u043a\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b, \u0447\u0442\u043e, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043d\u0430 \u0442\u0435\u043a\u0443\u0449\u0438\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0441\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u0442 \u043d\u0430\u0447\u0430\u043b\u043e \u0448\u0438\u0440\u043e\u043a\u043e\u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u041a\u0435\u0432\u0438\u043d \u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u043a\u0440\u0435\u0441\u0442\u0438\u043b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438\u00a0\u043a\u0430\u043a ESXicape, \u043f\u043e\u044f\u0441\u043d\u044f\u044f, \u0447\u0442\u043e \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a ESX, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a\u043e \u0432\u0441\u0435\u043c\u0443 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0430\u043d\u043d\u044b\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0438, \u0447\u0442\u043e \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0432\u0430\u0436\u043d\u043e, \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e ESX \u0438 \u0441\u043c\u043e\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435, \u0430 \u0432 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043d\u0438\u0445 - \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043f\u043e \u0441\u0440\u0435\u0434\u0435 VMware.\n\n\u0422\u0430\u043a, \u0435\u0441\u043b\u0438 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f vMotion, \u0447\u0442\u043e\u0431\u044b \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0435 \u043c\u0430\u0448\u0438\u043d\u044b \u043c\u043e\u0433\u043b\u0438 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043c\u0435\u0436\u0434\u0443 \u0445\u043e\u0441\u0442\u0430\u043c\u0438 ESX, \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u0443\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0435, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u0442 \u043f\u0440\u044f\u043c\u043e\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0443 \u0412\u041c \u043a\u0430\u043a \u043d\u0430\u00a0\u044d\u0442\u043e\u043c \u0445\u043e\u0441\u0442\u0435, \u0442\u0430\u043a \u0438 \u0437\u0430 \u0435\u0433\u043e \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438\u00a0\u043f\u043e \u0437\u0430\u043c\u044b\u0441\u043b\u0443 \u2014 \u043e\u043d\u0438, \u043f\u043e \u0441\u0443\u0442\u0438, \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u044b \u043d\u0430 \u0431\u044d\u043a\u044d\u043d\u0434\u0435.\n\n\u041f\u043e \u0441\u043b\u043e\u0432\u0430\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0447\u0442\u043e\u0431\u044b \u043e\u0431\u043e\u0439\u0442\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0446\u0435\u043d\u043d\u044b\u043c \u0430\u043a\u0442\u0438\u0432\u0430\u043c, \u0442\u0430\u043a\u0438\u043c \u043a\u0430\u043a \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u043e\u0432 \u0434\u043e\u043c\u0435\u043d\u0430 Active Directory, \u043d\u0435 \u0432\u044b\u0437\u044b\u0432\u0430\u044f \u043e\u043f\u043e\u0432\u0435\u0449\u0435\u043d\u0438\u0439.\n\n\u0410 \u044d\u0442\u043e \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0447\u0430\u0441\u0442\u043e \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u0442\u0441\u044f \u0432 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u0445 \u0441 ransomware, \u043a\u043e\u0433\u0434\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442 \u0441\u0435\u0440\u0432\u0435\u0440 ESX \u0438\u043b\u0438 vCenter \u0447\u0435\u0440\u0435\u0437 \u0441\u0435\u0442\u044c \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f VMware, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043d\u0435\u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. \u041a\u0430\u043a \u0442\u043e\u043b\u044c\u043a\u043e \u0445\u0430\u043a\u0435\u0440\u044b \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u044e\u0442 ESX, \u043e\u043d\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u043f\u0440\u043e\u043d\u0438\u043a\u0430\u044e\u0442 \u0432 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0443.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u0443 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 ESX \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u043e\u0432\u044b\u0448\u0430\u0435\u0442 \u0440\u0438\u0441\u043a. \u041d\u0435 \u043d\u0443\u0436\u043d\u043e \u0438\u0441\u043a\u0430\u0442\u044c \u0441\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043e \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX \u0438\u043b\u0438 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0430\u0442\u044c\u0441\u044f \u043a \u0438\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0441\u0435\u0442\u0438.\n\n\u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0432 \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435 \u0431\u044b\u043b \u0437\u0430\u043c\u0435\u0447\u0435\u043d \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \u043f\u043e\u0431\u0435\u0433\u0430 \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b ESXi \u043f\u043e \u0446\u0435\u043d\u0435 150 000 \u0434\u043e\u043b\u043b., \u043d\u043e \u043d\u0435\u044f\u0441\u043d\u043e, \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u043b\u0438 \u043e\u043d \u0438 \u0441\u0432\u044f\u0437\u0430\u043d \u043b\u0438 \u0441 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 0-day, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u043c\u0438 \u043d\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435.\n\n\u0411\u0443\u0434\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c.", "creation_timestamp": "2025-03-06T16:52:24.000000Z"}, {"uuid": "265b738b-2cc9-40ab-aaf5-08d01988c424", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "https://t.me/information_security_channel/53174", "content": "Broadcom Patches 3 VMware Zero-Days Exploited in the Wild\nhttps://www.securityweek.com/broadcom-patches-3-vmware-zero-days-exploited-in-the-wild/\n\nBroadcom patched VMware zero-days CVE-2025-22224, CVE-2025-22225 and CVE-2025-22226 after Microsoft warned it of exploitation. \nThe post Broadcom Patches 3 VMware Zero-Days Exploited in the Wild (https://www.securityweek.com/broadcom-patches-3-vmware-zero-days-exploited-in-the-wild/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2025-03-04T17:20:41.000000Z"}, {"uuid": "4598fa59-77de-4f31-b233-ec181626b4e9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3ljmdwbuqx224", "content": "", "creation_timestamp": "2025-03-05T06:26:34.815291Z"}, {"uuid": "b7ef57fa-71e0-4be9-ae13-0abeb68dd028", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/yokoi.bsky.social/post/3ljmfbbzhqs23", "content": "", "creation_timestamp": "2025-03-05T06:50:39.327851Z"}, {"uuid": "c5127aaf-ceb1-4861-ad08-83dd0f1ef15f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-96864c15-11dd9a03e934f5c6", "content": "", "creation_timestamp": "2025-03-05T06:55:17.372704Z"}, {"uuid": "0b961d79-1e70-411f-b869-dd6f4e60802f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3ll5gjrlxiw2j", "content": "", "creation_timestamp": "2025-03-24T18:53:42.905219Z"}, {"uuid": "3409e729-ae44-4159-a29e-e9e0139c7c83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3ljy3xkopxx2u", "content": "", "creation_timestamp": "2025-03-09T22:36:04.163497Z"}, {"uuid": "3bd0d737-4756-4d4d-bedb-d4172bbb930c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lkes3o3u2k2o", "content": "", "creation_timestamp": "2025-03-14T23:44:05.056977Z"}, {"uuid": "5402fa11-418f-48e5-b876-4b798d29d1be", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljt46pl7rc2q", "content": "", "creation_timestamp": "2025-03-07T22:56:51.184960Z"}, {"uuid": "fba3f026-bdfa-467b-a4a6-7a4676af9938", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114104429970048408", "content": "", "creation_timestamp": "2025-03-04T13:37:08.697415Z"}, {"uuid": "f5c3efbb-19d6-41f8-ae00-20f0a670a438", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/leekthehack.bsky.social/post/3ljna67zsos2p", "content": "", "creation_timestamp": "2025-03-05T14:52:07.799311Z"}, {"uuid": "5750580a-a760-438c-a8d4-9c055b28012d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/peterrobards.bsky.social/post/3ljnaxwwgak2e", "content": "", "creation_timestamp": "2025-03-05T15:06:28.879359Z"}, {"uuid": "67039b81-fe52-4e5b-b3e7-5ecb9e4ae56b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://cyberplace.social/users/GossiTheDog/statuses/114104596316369139", "content": "", "creation_timestamp": "2025-03-04T14:19:52.066742Z"}, {"uuid": "6a7e98bf-36d6-4959-96d0-b7ff0c940437", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/GossiTheDog.cyberplace.social.ap.brid.gy/post/3ljknvmh5o5a2", "content": "", "creation_timestamp": "2025-03-04T14:23:36.704548Z"}, {"uuid": "22a1e112-8b89-4b62-8a37-c6e11c95d67c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/cyb3rint3l.bsky.social/post/3ljkpknvnf22w", "content": "", "creation_timestamp": "2025-03-04T14:49:31.270423Z"}, {"uuid": "fc782a69-2f2a-424b-ae46-4fe00621e485", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3ljkqdad2nr2q", "content": "", "creation_timestamp": "2025-03-04T15:03:14.378755Z"}, {"uuid": "05e1d49f-9e67-4878-a143-28cf1a354782", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljkqfnqjcn2n", "content": "", "creation_timestamp": "2025-03-04T15:04:35.286006Z"}, {"uuid": "8d6ace67-bb73-40c5-8ce8-6487cea4486e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3ljnutm7usj22", "content": "", "creation_timestamp": "2025-03-05T21:01:58.707812Z"}, {"uuid": "c947bb76-e04a-4c89-9b40-9a59fd463e23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-03-04T18:10:04.000000Z"}, {"uuid": "51c5ef0b-cc1c-4b61-898e-be64ce9bac23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/technofeed.bsky.social/post/3ljoejhdpzf2n", "content": "", "creation_timestamp": "2025-03-06T01:42:37.872972Z"}, {"uuid": "42641f79-8eab-4bf6-942f-3ba0a92905c2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/technofeed.bsky.social/post/3ljoejmbsmf2n", "content": "", "creation_timestamp": "2025-03-06T01:42:42.129352Z"}, {"uuid": "dd88f753-0983-4d02-8110-365229cd6e9f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-03-06T04:40:22.000000Z"}, {"uuid": "5ec0d0af-e02d-4e99-b66a-a30e9bea6792", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljw3k7uke22r", "content": "", "creation_timestamp": "2025-03-09T03:23:18.017354Z"}, {"uuid": "153f24db-d814-4174-8a99-5015e64447d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/mawg0ud.bsky.social/post/3ljowefjpj224", "content": "", "creation_timestamp": "2025-03-06T07:01:57.235846Z"}, {"uuid": "2474e49c-ff04-4b99-b03c-4ccf729d1b30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljm2ars5nk22", "content": "", "creation_timestamp": "2025-03-05T03:33:33.446846Z"}, {"uuid": "5b5e264e-f82c-4662-b613-3c990784fb39", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljm2deabl222", "content": "", "creation_timestamp": "2025-03-05T03:34:57.125715Z"}, {"uuid": "239346ad-2f8b-4acd-8888-1d3ff96b1b25", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljm2lfvvwc2f", "content": "", "creation_timestamp": "2025-03-05T03:39:35.560269Z"}, {"uuid": "0b4c17be-e526-43a1-bb43-6292a85159c7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljm2o33xd22f", "content": "", "creation_timestamp": "2025-03-05T03:41:04.407002Z"}, {"uuid": "f3e49a1f-ed1f-4b3f-810c-29ac03bfdba4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lpw5qmvtxs2l", "content": "", "creation_timestamp": "2025-05-24T12:33:52.924774Z"}, {"uuid": "39ce3342-f8a1-4072-82ed-ce84d046ca30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://www.cert.at/de/warnungen/2025/3/kritische-sicherheitslucken-in-vmware-esxi-workstation-und-fusion-aktiv-ausgenutzt-updates-verfugbar", "content": "", "creation_timestamp": "2025-03-04T16:56:13.000000Z"}, {"uuid": "f5e6b49b-5341-4326-ac90-6d669a606f7e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-18T13:31:24.000000Z"}, {"uuid": "2c63e663-3df0-46d6-ac83-e2a80e6bf517", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://gist.github.com/Darkcrai86/9d382218b72e067591282202b03e7d55", "content": "", "creation_timestamp": "2026-01-08T08:10:26.000000Z"}, {"uuid": "6eadb374-40e0-486b-992a-c11b9dff9ca6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mcogihykys2k", "content": "", "creation_timestamp": "2026-01-18T05:47:48.319229Z"}, {"uuid": "c36c9545-8f3f-4cbd-90ed-707c647ef066", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/etguenni.bsky.social/post/3me3nbydtt22c", "content": "", "creation_timestamp": "2026-02-05T05:19:08.887323Z"}, {"uuid": "4ebf872c-49df-4cee-9226-cf62378a748f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://social.tchncs.de/users/gborn/statuses/116016332844705858", "content": "", "creation_timestamp": "2026-02-05T05:19:11.388829Z"}, {"uuid": "a5228a9b-1c6a-41e2-bb93-60c40594015a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-22225", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3me3ov7uvns2n", "content": "", "creation_timestamp": "2026-02-05T05:47:48.552066Z"}, {"uuid": "843c13bd-7952-45e0-a10a-e8dcde3f0e13", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3me3rmd2e5s2n", "content": "", "creation_timestamp": "2026-02-05T06:36:31.062587Z"}, {"uuid": "2acc1c23-8662-437a-9954-fb3bb6b449c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/116018291891287699", "content": "", "creation_timestamp": "2026-02-05T13:37:23.907179Z"}, {"uuid": "329a8c37-b808-4265-b9d3-5b511ed114b3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3me4j56tu5s2r", "content": "", "creation_timestamp": "2026-02-05T13:37:34.187453Z"}, {"uuid": "6498e92b-408a-42c3-8e49-ca26b2912d7c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3me7kdzxp522q", "content": "", "creation_timestamp": "2026-02-06T18:37:16.575016Z"}, {"uuid": "aef7a85b-dc81-4b4f-8214-dee20ce52766", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/thedailytechfeed.com/post/3me7kxdylrh2i", "content": "", "creation_timestamp": "2026-02-06T18:48:04.024803Z"}, {"uuid": "fba89dde-82b2-4ff7-b6f9-ae6fe6af1d78", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "4f29edb9-4c4b-44ca-b041-9b050656b6ae", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/martomarto.bsky.social/post/3mfedle7cns2i", "content": "", "creation_timestamp": "2026-02-21T09:44:39.946879Z"}, {"uuid": "8c49d6e0-212a-4093-98fd-09a59db5f5a6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/626a0247-a4dd-4f9b-b76c-16724d814294", "content": "", "creation_timestamp": "2026-02-02T12:26:08.914670Z"}, {"uuid": "8140fa3d-68d2-4d2c-967d-5b7f8a88ce51", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/cvedetector/19494", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22225 - VMware ESXi Kernel Privilege Escalation Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2025-22225 \nPublished : March 4, 2025, 12:15 p.m. | 27\u00a0minutes ago \nDescription : VMware ESXi contains an arbitrary write\u00a0vulnerability.\u00a0A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox. \nSeverity: 8.2 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-04T14:10:23.000000Z"}, {"uuid": "ee0be7a7-e841-435f-86ab-667162bfd575", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "Telegram/UuiJgRxtCIID8TxV_LFNuWMe6WdrMxfDGcv6ViwGwUP2Jo_w", "content": "", "creation_timestamp": "2026-02-04T22:20:05.000000Z"}, {"uuid": "cf0a3bf2-71c8-4eac-b93f-9c23d4f6cd07", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "https://t.me/ctinow/245308", "content": "CVE-2025-22225 in VMware ESXi now used in active ransomware attacks\nhttps://ift.tt/nkdCETF", "creation_timestamp": "2026-02-04T22:24:17.000000Z"}, {"uuid": "ed68e32e-783b-4b20-819d-8c0290994e45", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/cybersecplayground/124", "content": "\ud83d\udea8 Critical VMware ESXi Vulnerabilities Discovered! \ud83d\udea8\n\n\ud83d\udd34 CVE-2025-22224, CVE-2025-22225, CVE-2025-22226\n\u26a1\ufe0f Severity: 7.1 - 9.3 (High to Critical)\n\u26a1\ufe0f Affected Products: VMware ESXi, vCenter Server & Cloud Foundation\n\u26a1\ufe0f Vulnerabilities:\n\ud83d\udd39 Code Execution \u2013 Exploiting system processes for remote execution\n\ud83d\udd39 Sandbox Escape \u2013 Breaking out of VM isolation to access the host\n\ud83d\udd39 Memory Leak \u2013 Exposing sensitive data from unprotected memory\n\n\ud83d\udce1 Search on Netlas.io\n\n\ud83d\udca1 Manual Check:\n1\ufe0f\u20e3 Ensure your VMware ESXi is updated to the latest patch\n2\ufe0f\u20e3 Disable unnecessary services & secure management interfaces\n3\ufe0f\u20e3 Monitor network activity for unusual API calls or access attempts\n\n\ud83d\ude80 Mitigation Steps\n\u2705 Apply the latest VMware security patches immediately\n\u2705 Restrict access to ESXi management interfaces\n\u2705 Enable firewall rules to block unauthorized connections\n\u2705 Monitor logs for anomalous activity\n\n\ud83d\udce2 Stay ahead of threats! Join us \ud83d\udc49 @cybersecplayground\n\n#VMware #ESXi #CyberSecurity #EthicalHacking #Pentesting", "creation_timestamp": "2025-03-06T19:00:12.000000Z"}, {"uuid": "6d138a33-a350-4e2f-9d4d-a66034641026", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/itsec_news/5777", "content": "\u200b\u26a1\ufe0f11 \u0446\u0438\u0444\u0440\u043e\u0432\u044b\u0445 \u0434\u044b\u0440, \u0447\u0435\u0440\u0435\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0436\u043d\u043e \u0443\u043d\u0435\u0441\u0442\u0438 \u0432\u0441\u0451: \u043e\u0442 \u0434\u0430\u043d\u043d\u044b\u0445 \u0434\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u0438\u044f\n\n\ud83d\udcac \u042d\u043a\u0441\u043f\u0435\u0440\u0442\u044b Positive Technologies \u043e\u0442\u043d\u0435\u0441\u043b\u0438 \u043a \u0447\u0438\u0441\u043b\u0443 \u0442\u0440\u0435\u043d\u0434\u043e\u0432\u044b\u0445 \u0435\u0449\u0451 \u043e\u0434\u0438\u043d\u043d\u0430\u0434\u0446\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0438\u0445 \u043a\u043b\u044e\u0447\u0435\u0432\u044b\u0435 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u044b \u0446\u0438\u0444\u0440\u043e\u0432\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b. \u0412 \u0441\u043f\u0438\u0441\u043e\u043a \u0432\u043e\u0448\u043b\u0438 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b Microsoft, \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u044b VMware, \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440 Kubernetes \u0438 \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440 Apache Tomcat.\n\nMicrosoft\n\nCVE-2024-30085 \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0435 Windows Cloud Files Mini Filter (CVSS 7.8) \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c SYSTEM-\u0434\u043e\u0441\u0442\u0443\u043f. \u041e\u0448\u0438\u0431\u043a\u0430 \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c \u0431\u0443\u0444\u0435\u0440\u0430 \u043a\u0443\u0447\u0438 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0431\u0438\u0442\u043e\u0432\u044b\u0445 \u043a\u0430\u0440\u0442. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0430\u0446\u0438\u044f \u0441\u0435\u0442\u0438, PoLP, \u0443\u0441\u0438\u043b\u0435\u043d\u043d\u044b\u0439 \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433.\n\nCVE-2025-24983 \u2014 \u043e\u0448\u0438\u0431\u043a\u0430 \u0432 \u043f\u043e\u0434\u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u044f\u0434\u0440\u0430 Win32 (CVSS 7.0) \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0447\u0435\u0440\u0435\u0437 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u0443\u044e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0443, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0433\u043e\u043d\u043a\u0443. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u043f\u0440\u0430\u0432, \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433 \u043f\u043e\u043f\u044b\u0442\u043e\u043a \u044d\u0441\u043a\u0430\u043b\u0430\u0446\u0438\u0438.\n\nCVE-2025-26633 \u2014 \u043e\u0431\u0445\u043e\u0434 \u0437\u0430\u0449\u0438\u0442\u044b \u0432 Microsoft Management Console (CVSS 7.0). \u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0432\u043d\u0435\u0434\u0440\u0438\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 MSC-\u0444\u0430\u0439\u043b \u0447\u0435\u0440\u0435\u0437 \u0444\u0438\u0448\u0438\u043d\u0433. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u043a\u0430 MSC \u0438 VHD-\u0444\u0430\u0439\u043b\u043e\u0432 \u043d\u0430 \u043f\u0440\u043e\u043a\u0441\u0438 \u0438 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u044d\u043a\u0440\u0430\u043d\u0430\u0445.\n\nCVE-2025-24071 \u2014 \u0441\u043f\u0443\u0444\u0438\u043d\u0433 \u0432 Windows File Explorer (CVSS 7.5). \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c NTLM-\u0445\u0435\u0448\u0438, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044f LIBRARY-MS-\u0444\u0430\u0439\u043b\u044b. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u043f\u043e\u0434\u043f\u0438\u0441\u044b\u0432\u0430\u043d\u0438\u0435 SMB, \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 NTLM.\n\nCVE-2025-24993 \u2014 RCE \u0432 \u0444\u0430\u0439\u043b\u043e\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 NTFS (CVSS 7.8). \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0447\u0435\u0440\u0435\u0437 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 VHD-\u0434\u0438\u0441\u043a.\n\nCVE-2025-24985 \u2014 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u0430\u044f RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Fast FAT (CVSS 7.8), \u0442\u0430\u043a\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 VHD \u0434\u043b\u044f \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e.\n\nVMware\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Shadowserver, \u0431\u043e\u043b\u0435\u0435 40 \u0442\u044b\u0441. \u0443\u0437\u043b\u043e\u0432 ESXi \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0438\u0437\u0432\u043d\u0435 \u0438 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0440\u0438\u0441\u043a\u0443:\n\nCVE-2025-22224 (CVSS 9.3) \u2014 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u0430\u044f \u0437\u0430\u043f\u0438\u0441\u044c \u0447\u0435\u0440\u0435\u0437 TOCTOU \u0432 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0435 ESXi \u0438 Workstation.\n\nCVE-2025-22225 (CVSS 8.2) \u2014 \u0437\u0430\u043f\u0438\u0441\u044c \u043a\u043e\u0434\u0430 \u0432 \u043e\u0431\u043b\u0430\u0441\u0442\u044c \u044f\u0434\u0440\u0430 VMX-\u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430.\n\nCVE-2025-22226 (CVSS 7.1) \u2014 \u0443\u0442\u0435\u0447\u043a\u0430 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0447\u0435\u0440\u0435\u0437 \u0447\u0442\u0435\u043d\u0438\u0435 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438 \u0434\u043e\u043f\u0443\u0441\u0442\u0438\u043c\u043e\u0433\u043e \u0434\u0438\u0430\u043f\u0430\u0437\u043e\u043d\u0430 \u0432 HGFS.\n\n\u0420\u0435\u0448\u0435\u043d\u0438\u044f : \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 VMware Workstation 17.6.3, Fusion 13.6.3 \u0438 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u043f\u0430\u0442\u0447\u0435\u0439.\n\nKubernetes\n\nCVE-2025-1974 (CVSS 9.8) \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 ingress-nginx \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430. \u041f\u043e\u0434 \u0443\u0434\u0430\u0440\u043e\u043c \u0431\u043e\u043b\u0435\u0435 6500 \u0438\u043d\u0441\u0442\u0430\u043d\u0441\u043e\u0432, \u043f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Wiz .\n\n\u041c\u0435\u0440\u044b \u0437\u0430\u0449\u0438\u0442\u044b : \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 ingress-nginx, \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 Validating Admission Controller \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432.\n\nApache\n\nCVE-2025-24813 (CVSS 9.8) \u2014 RCE \u0432 Tomcat \u0447\u0435\u0440\u0435\u0437 \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u044b\u0435 PUT-\u0437\u0430\u043f\u0440\u043e\u0441\u044b \u0438 \u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044e. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 Rapid7 \u0432\u044b\u044f\u0432\u0438\u043b\u043e ~200 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432.\n\n\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043e Tomcat 9.0.99, 10.1.35, 11.0.3 \u0438 \u0432\u044b\u0448\u0435.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2025-04-11T17:25:57.000000Z"}, {"uuid": "e444b437-b88d-4ae1-8968-4fd28dab625c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/true_secator/6810", "content": "\u0421\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0435\u0439 \u0442\u0440\u0435\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0434\u043d\u044f\u0445 0-day VMware \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u0442\u0435\u043f\u0435\u0440\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a ESXicape \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0442\u044b\u0441\u044f\u0447 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432, \u043e \u0447\u0435\u043c \u0441\u0432\u0438\u0434\u0435\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0443\u044e\u0442 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f.\n\n4 \u043c\u0430\u0440\u0442\u0430 Broadcom \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 ESXi, Workstation \u0438 Fusion \u043e \u0432\u044b\u043f\u0443\u0441\u043a\u0435 \u0441\u0440\u043e\u0447\u043d\u044b\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u0434\u043b\u044f CVE-2025-22224, CVE-2025-22225 \u0438 CVE-2025-22226, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430, \u0432\u044b\u0445\u043e\u0434\u0443 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b \u0438 \u0443\u0442\u0435\u0447\u043a\u0430\u043c \u043f\u0430\u043c\u044f\u0442\u0438.\u00a0\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043e\u043a \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f Microsoft Threat Intelligence Center (\u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, Microsoft \u0442\u0430\u043a\u0436\u0435 \u0432\u0438\u0434\u0435\u043b\u0430 \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c 0-day), \u043d\u043e \u043d\u0438 Broadcom, \u043d\u0438 Microsoft \u043d\u0435 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0435\u0439 \u043e \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u043e\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Netlas \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e\u0431 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0438 \u0431\u043e\u043b\u0435\u0435 7000 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 VMware ESXi, \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u043d\u044b\u0445 \u043a \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0435, \u043f\u043e-\u0432\u0438\u0434\u0438\u043c\u043e\u043c\u0443, \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c.\u00a0\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Shadowserver Foundation \u0432\u044b\u044f\u0432\u0438\u043b\u0430 \u0431\u043e\u043b\u0435\u0435 41 000 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 ESXi, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u041a\u0438\u0442\u0430\u0435, \u0424\u0440\u0430\u043d\u0446\u0438\u0438, \u0421\u0428\u0410, \u0413\u0435\u0440\u043c\u0430\u043d\u0438\u0438, \u0418\u0440\u0430\u043d\u0435, \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u0438 \u0438 \u042e\u0436\u043d\u043e\u0439 \u041a\u043e\u0440\u0435\u0435 (\u0432 \u0420\u0424 - \u0431\u043e\u043b\u0435\u0435 700).\n\n\u0418\u0445 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0431\u044b\u043b\u0438 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 CVE-2025-22224, \u043d\u043e \u0434\u0435\u0442\u0435\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b \u0438 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0432\u0441\u0435 \u043e\u043d\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u043e\u0434\u043d\u0438 \u0438 \u0442\u0435 \u0436\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u041f\u041e.\n\n\u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u0438 PoC \u043f\u043e\u043a\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b, \u0447\u0442\u043e, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043d\u0430 \u0442\u0435\u043a\u0443\u0449\u0438\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0441\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u0442 \u043d\u0430\u0447\u0430\u043b\u043e \u0448\u0438\u0440\u043e\u043a\u043e\u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u041a\u0435\u0432\u0438\u043d \u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u043a\u0440\u0435\u0441\u0442\u0438\u043b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438\u00a0\u043a\u0430\u043a ESXicape, \u043f\u043e\u044f\u0441\u043d\u044f\u044f, \u0447\u0442\u043e \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a ESX, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a\u043e \u0432\u0441\u0435\u043c\u0443 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0430\u043d\u043d\u044b\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0438, \u0447\u0442\u043e \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0432\u0430\u0436\u043d\u043e, \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e ESX \u0438 \u0441\u043c\u043e\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435, \u0430 \u0432 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043d\u0438\u0445 - \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043f\u043e \u0441\u0440\u0435\u0434\u0435 VMware.\n\n\u0422\u0430\u043a, \u0435\u0441\u043b\u0438 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f vMotion, \u0447\u0442\u043e\u0431\u044b \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0435 \u043c\u0430\u0448\u0438\u043d\u044b \u043c\u043e\u0433\u043b\u0438 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043c\u0435\u0436\u0434\u0443 \u0445\u043e\u0441\u0442\u0430\u043c\u0438 ESX, \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u0443\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0435, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u0442 \u043f\u0440\u044f\u043c\u043e\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0443 \u0412\u041c \u043a\u0430\u043a \u043d\u0430\u00a0\u044d\u0442\u043e\u043c \u0445\u043e\u0441\u0442\u0435, \u0442\u0430\u043a \u0438 \u0437\u0430 \u0435\u0433\u043e \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438\u00a0\u043f\u043e \u0437\u0430\u043c\u044b\u0441\u043b\u0443 \u2014 \u043e\u043d\u0438, \u043f\u043e \u0441\u0443\u0442\u0438, \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u044b \u043d\u0430 \u0431\u044d\u043a\u044d\u043d\u0434\u0435.\n\n\u041f\u043e \u0441\u043b\u043e\u0432\u0430\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0447\u0442\u043e\u0431\u044b \u043e\u0431\u043e\u0439\u0442\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0446\u0435\u043d\u043d\u044b\u043c \u0430\u043a\u0442\u0438\u0432\u0430\u043c, \u0442\u0430\u043a\u0438\u043c \u043a\u0430\u043a \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u043e\u0432 \u0434\u043e\u043c\u0435\u043d\u0430 Active Directory, \u043d\u0435 \u0432\u044b\u0437\u044b\u0432\u0430\u044f \u043e\u043f\u043e\u0432\u0435\u0449\u0435\u043d\u0438\u0439.\n\n\u0410 \u044d\u0442\u043e \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0447\u0430\u0441\u0442\u043e \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u0442\u0441\u044f \u0432 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u0445 \u0441 ransomware, \u043a\u043e\u0433\u0434\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442 \u0441\u0435\u0440\u0432\u0435\u0440 ESX \u0438\u043b\u0438 vCenter \u0447\u0435\u0440\u0435\u0437 \u0441\u0435\u0442\u044c \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f VMware, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043d\u0435\u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. \u041a\u0430\u043a \u0442\u043e\u043b\u044c\u043a\u043e \u0445\u0430\u043a\u0435\u0440\u044b \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u044e\u0442 ESX, \u043e\u043d\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u043f\u0440\u043e\u043d\u0438\u043a\u0430\u044e\u0442 \u0432 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0443.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u0443 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 ESX \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u043e\u0432\u044b\u0448\u0430\u0435\u0442 \u0440\u0438\u0441\u043a. \u041d\u0435 \u043d\u0443\u0436\u043d\u043e \u0438\u0441\u043a\u0430\u0442\u044c \u0441\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043e \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX \u0438\u043b\u0438 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0430\u0442\u044c\u0441\u044f \u043a \u0438\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0441\u0435\u0442\u0438.\n\n\u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0432 \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435 \u0431\u044b\u043b \u0437\u0430\u043c\u0435\u0447\u0435\u043d \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \u043f\u043e\u0431\u0435\u0433\u0430 \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b ESXi \u043f\u043e \u0446\u0435\u043d\u0435 150 000 \u0434\u043e\u043b\u043b., \u043d\u043e \u043d\u0435\u044f\u0441\u043d\u043e, \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u043b\u0438 \u043e\u043d \u0438 \u0441\u0432\u044f\u0437\u0430\u043d \u043b\u0438 \u0441 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 0-day, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u043c\u0438 \u043d\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435.\n\n\u0411\u0443\u0434\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c.", "creation_timestamp": "2025-03-06T12:23:40.000000Z"}, {"uuid": "334393d5-c4a9-402f-a5e4-257e34f9225b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-22225", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3ljm6jqw7w224", "content": "", "creation_timestamp": "2025-03-05T04:50:05.714064Z"}, {"uuid": "2e5f1967-0c14-47f1-a6b8-7e044743f20d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://infosec.exchange/users/harrysintonen/statuses/114104285789301930", "content": "", "creation_timestamp": "2025-03-04T13:00:28.594102Z"}, {"uuid": "0f64a391-a6a1-463d-85e4-c6e261cf0ddc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/bluedevil.bsky.social/post/3ljyrdfcork27", "content": "", "creation_timestamp": "2025-03-10T04:58:30.369893Z"}, {"uuid": "b366c7d5-4e5d-43b9-9ea2-bb18de9d4d30", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/newslit.co/post/3ljpvfse5d225", "content": "", "creation_timestamp": "2025-03-06T16:17:31.461134Z"}, {"uuid": "c03f1abb-b299-470e-b74b-e87f3c80da21", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://mastodon.social/users/CyberSignaler/statuses/114104474016104453", "content": "", "creation_timestamp": "2025-03-04T13:48:21.311794Z"}, {"uuid": "4880f2c9-b67f-48f4-af23-d512cee5b26a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/undercodenews.bsky.social/post/3ljkmbrafuc2i", "content": "", "creation_timestamp": "2025-03-04T13:50:50.153735Z"}, {"uuid": "a7dad34f-99cb-4c6f-88dd-31518e6bd44a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/leekthehack.bsky.social/post/3ljna66d5o22p", "content": "", "creation_timestamp": "2025-03-05T14:52:07.179262Z"}, {"uuid": "ee1ad183-9dc5-410b-a576-6134c98d2c54", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-077-02", "content": "", "creation_timestamp": "2025-03-18T11:00:00.000000Z"}, {"uuid": "728bc947-33fd-4e36-9b21-2b5a4af5d539", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/jenkins.goto.sour.red.ap.brid.gy/post/3ljkrai2ivxk2", "content": "", "creation_timestamp": "2025-03-04T15:20:30.349780Z"}, {"uuid": "3818515b-6954-47e8-b1ec-99db556a932a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://threatintel.cc/2025/03/05/vmware-fixed-three-actively-exploited.html", "content": "", "creation_timestamp": "2025-03-05T13:37:14.000000Z"}, {"uuid": "7aeecfd2-e4d7-4736-bd1f-c9988be4286b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/3483017", "content": "", "creation_timestamp": "2025-03-04T19:14:13.497811Z"}, {"uuid": "a6e78aac-cac2-4354-9a31-8776fd62ab94", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3ljnyou4vez23", "content": "", "creation_timestamp": "2025-03-05T22:10:53.379551Z"}, {"uuid": "65514d0c-0cc0-401e-9817-2bc601ee8684", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3ljl6k2yeul2w", "content": "", "creation_timestamp": "2025-03-04T19:17:38.283007Z"}, {"uuid": "de15643d-0407-49c1-ae06-0850ca22f77c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3ljl6k2yeuk2w", "content": "", "creation_timestamp": "2025-03-04T19:17:37.104988Z"}, {"uuid": "2f3a894d-2e9b-4fe3-bddc-4576bbd8d689", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/rxerium.com/post/3ljl725qlbc2p", "content": "", "creation_timestamp": "2025-03-04T19:26:35.880795Z"}, {"uuid": "66c49580-e4c2-4356-8a28-436c331fb25c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ljr4oqiqzl2x", "content": "", "creation_timestamp": "2025-03-07T04:00:24.839036Z"}, {"uuid": "ad80a5fb-9e6b-41c1-bada-e25056e95a1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/areenzor.bsky.social/post/3ljox5fqlgk25", "content": "", "creation_timestamp": "2025-03-06T07:15:55.437251Z"}, {"uuid": "b0bba6d1-f3ff-49e6-b071-38c3743948ed", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ljlqoe5ols2d", "content": "", "creation_timestamp": "2025-03-05T00:42:07.541728Z"}, {"uuid": "c2685f04-6d96-4319-98fc-89a8e47302a5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/nihonmatsu.bsky.social/post/3ljm3mci3ys2i", "content": "", "creation_timestamp": "2025-03-05T03:57:53.950093Z"}, {"uuid": "f509caf3-47cb-4838-b8d8-4a025036b60d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/samilaiho.com/post/3ljm5okezas2j", "content": "", "creation_timestamp": "2025-03-05T04:34:52.485708Z"}, {"uuid": "ac92ca07-feda-48e6-bd6f-a22e115ce17d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "MISP/4937e86f-f5bd-4d09-8bda-88a7440077f3", "content": "", "creation_timestamp": "2025-08-19T02:47:46.000000Z"}, {"uuid": "7db92600-4351-4975-94bb-30c84396ebca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/hacker.at.thenote.app/post/3me5bks3kvk2q", "content": "", "creation_timestamp": "2026-02-05T20:54:40.162817Z"}, {"uuid": "b3347c6f-199a-4c87-9166-f9013a0fef1d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-22225", "type": "seen", "source": "https://infosec.exchange/users/defendopsdiaries/statuses/116013632613964877", "content": "", "creation_timestamp": "2026-02-04T17:52:28.786497Z"}, {"uuid": "323c6234-3736-4781-8f35-5a97a6e315d3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3me2wsf2kws2m", "content": "", "creation_timestamp": "2026-02-04T22:36:43.245365Z"}, {"uuid": "4b18b18a-a1b9-4b6d-880c-af07c952b6c1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/626a0247-a4dd-4f9b-b76c-16724d814294", "content": "", "creation_timestamp": "2026-02-02T12:26:08.914670Z"}, {"uuid": "b4e24746-1398-4896-b4f6-0fdd22d26756", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3meeyyw6bwk2l", "content": "", "creation_timestamp": "2026-02-08T22:42:51.317647Z"}, {"uuid": "0e528fee-8fc8-4c0e-83fc-e0e79e8da95c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3meezlqoolk2l", "content": "", "creation_timestamp": "2026-02-08T22:53:22.968474Z"}, {"uuid": "3bffd3f2-7f3f-47c0-b374-446c047c7462", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3meffmzgywt23", "content": "", "creation_timestamp": "2026-02-09T02:28:47.047506Z"}, {"uuid": "d14fe818-384a-44cd-8b07-dbbc5d9a3d8e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://gist.github.com/17blackclaw-hub/0a33517c5cc475e0430b545dcea9ee18", "content": "", "creation_timestamp": "2026-02-08T04:37:14.000000Z"}, {"uuid": "f08037bc-78da-4e26-9212-4c4ec0171a59", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1491", "content": "", "creation_timestamp": "2025-03-06T04:00:00.000000Z"}, {"uuid": "d1f7a735-c4f7-4819-8e38-efa822febdde", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24404", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a(including : CVE-2025-22226, CVE-2025-22225, CVE-2025-22224)\nURL\uff1ahttps://github.com/bronsoneaver/vme-escape\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T12:58:16.000000Z"}, {"uuid": "6228bebd-d354-4cc9-b658-666b6b47d535", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "https://t.me/cIub1337/49", "content": "Multiple critical vulnerabilities have been identified in VMware products, with evidence of active exploitation by ransomware groups. \n\nOrganizations using these products should urgently apply the recommended patches to mitigate potential risks.  \n\n 1. CISA Adds Four Known Exploited Vulnerabilities to Catalog: On March 4, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) updated its Known Exploited Vulnerabilities Catalog to include four new vulnerabilities: \n \u2022 CVE-2024-50302: A Linux Kernel Use of Uninitialized Resource Vulnerability. \n \u2022 CVE-2025-22225: A VMware ESXi Arbitrary Write Vulnerability. \n \u2022 CVE-2025-22224: A VMware ESXi and Workstation TOCTOU Race Condition Vulnerability. \n \u2022 CVE-2025-22226: A VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability. \nCISA emphasizes that these vulnerabilities are actively exploited and pose significant risks, urging organizations to prioritize timely remediation as part of their vulnerability management practices.\n 2. Kevin Beaumont\u2019s Cyberplace Post: Cybersecurity expert Kevin Beaumont highlighted that three different zero-day vulnerabilities in VMware products are currently under active exploitation. He noted that these vulnerabilities are being leveraged by threat actors, underscoring the critical need for immediate patching and mitigation efforts.\n 3. Broadcom Security Advisory (VMSA-2025-0004): On March 4, 2025, Broadcom released a security advisory addressing multiple vulnerabilities in VMware products:\n \u2022 CVE-2025-22224: A critical heap-overflow vulnerability in VMware ESXi and Workstation that could allow a malicious actor with local administrative privileges on a virtual machine to execute code as the VMX process on the host. \n \u2022 CVE-2025-22225: An arbitrary write vulnerability in VMware ESXi, enabling a malicious actor with VMX process privileges to perform arbitrary kernel writes, potentially leading to a sandbox escape. \n \u2022 CVE-2025-22226: An information disclosure vulnerability in VMware ESXi, Workstation, and Fusion due to an out-of-bounds read in HGFS, which could allow an attacker with administrative privileges on a virtual machine to leak memory from the VMX process. \nBroadcom has released patches to address these vulnerabilities and recommends that affected users apply them promptly.\n\n#ransomware #vmware\n\nTelegram   \u2709\ufe0f @cIub1337\nX (Twitter) \ud83d\udd4a @club31337", "creation_timestamp": "2025-03-10T18:48:29.000000Z"}, {"uuid": "132dd080-0e18-421e-b3ea-b058b42127f8", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/ViralCyber/11425", "content": "\ud83d\udd34 \u0647\u0634\u062f\u0627\u0631 \u067e\u0686 \u0641\u0648\u0631\u06cc \u0646\u0642\u0627\u06cc\u0635 \u0627\u0645\u0646\u06cc\u062a\u06cc VMware \u062a\u062d\u062a \u0633\u0648\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0641\u0639\u0627\u0644 \u062f\u0631 \u0641\u0636\u0627\u06cc \u0633\u0627\u06cc\u0628\u0631\u06cc\n\n\u0645\u062c\u0645\u0648\u0639\u0647 Broadcom \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u0631\u0641\u0639 \u0633\u0647 \u0646\u0642\u0635 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0641\u0639\u0627\u0644 \u062f\u0631 VMware ESXi\u060c Workstation \u0648 Fusion \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0648 \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0634\u0648\u0646\u062f.\n\n\u0644\u06cc\u0633\u062a \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0628\u0647 \u0634\u0631\u062d \u0632\u06cc\u0631 \u0627\u0633\u062a:\n\n\u2022 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2025-22224: \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc TOCTOU\u06a9\u0647 \u200b\u200b\u0645\u0646\u062c\u0631 \u0628\u0647 \u0646\u0648\u0634\u062a\u0646 \u062e\u0627\u0631\u062c \u0627\u0632 \u0645\u062d\u062f\u0648\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f\u060c \u06a9\u0647 \u0639\u0627\u0645\u0644 \u0645\u062e\u0631\u0628 \u0628\u0627 \u0627\u062e\u062a\u06cc\u0627\u0631\u0627\u062a \u0627\u062f\u0645\u06cc\u0646 \u062f\u0631 \u06cc\u06a9 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u062f\u0631 \u062d\u0627\u0644 \u0627\u062c\u0631\u0627\u06cc \u0645\u06cc\u0632\u0628\u0627\u0646 MX \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n\u2022 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2025-22225: \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0646\u0648\u0634\u062a\u0646 \u062f\u0644\u062e\u0648\u0627\u0647 \u06a9\u0647 \u06cc\u06a9 \u0639\u0627\u0645\u0644 \u0645\u062e\u0631\u0628 \u0628\u0627 \u0627\u062e\u062a\u06cc\u0627\u0631\u0627\u062a \u062f\u0631 \u0641\u0631\u0622\u06cc\u0646\u062f VMX \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u0627\u06cc\u062c\u0627\u062f \u0631\u0627\u0647 \u0641\u0631\u0627\u0631 \u0627\u0632 sandbox \u0633\u0648\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n\u2022 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2025-22226: \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0628\u0647 \u062f\u0644\u06cc\u0644 \u062e\u0648\u0627\u0646\u0634 \u062e\u0627\u0631\u062c \u0627\u0632 \u0645\u062d\u062f\u0648\u062f\u0647 \u062f\u0631 HGFS \u06a9\u0647 \u06cc\u06a9 \u0639\u0627\u0645\u0644 \u0645\u062e\u0631\u0628 \u0628\u0627 \u0627\u062e\u062a\u06cc\u0627\u0631\u0627\u062a \u0627\u062f\u0645\u06cc\u0646 \u0628\u0631\u0627\u06cc \u06cc\u06a9 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u0646\u0634\u062a \u062d\u0627\u0641\u0638\u0647 \u0627\u0632 \u0641\u0631\u0622\u06cc\u0646\u062f vmx \u0633\u0648\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n#Cybersecurity #Cyber_Attack #VMware #Patch #Virtual_Machine #VMX #ESXi #Broadcom #Fusion #\u0627\u0645\u0646\u06cc\u062a_\u0633\u0627\u06cc\u0628\u0631\u06cc #\u062d\u0645\u0644\u0647_\u0633\u0627\u06cc\u0628\u0631\u06cc #\u067e\u0686 #\u0631\u0648\u0632_\u0635\u0641\u0631\n\n\u0645\u0637\u0627\u0644\u0639\u0647 \u06a9\u0627\u0645\u0644 \u062e\u0628\u0631 \ud83d\udc49\n\n\ud83c\udd94 @Takianco\n\ud83c\uddee\ud83c\uddf7", "creation_timestamp": "2025-03-09T10:50:15.000000Z"}, {"uuid": "2c8340c0-f118-45db-85e0-4b2f48474373", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/ViralCyber/11303", "content": "\ud83d\udd34 \u0627\u0635\u0644\u0627\u062d \u0633\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc 0Day \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a VMware\n\n\u06a9\u0645\u067e\u0627\u0646\u06cc Broadcom \u0627\u0645\u0631\u0648\u0632 \u062e\u0628\u0631 \u0627\u0632 \u0627\u0635\u0644\u0627\u062d \u0633\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc 0day \u062f\u0627\u062f\u0647 \u06a9\u0647 \u062f\u0631 \u062d\u0645\u0644\u0627\u062a\u06cc \u0645\u0648\u0631\u062f \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u0642\u0631\u0627\u0631 \u06af\u0631\u0641\u062a\u0646.\n\n\u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627 \u062a\u0648\u0633\u0637 Microsoft Threat Intelligence Center \u06af\u0632\u0627\u0631\u0634 \u0634\u062f\u0646.\n\n- \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc CVE-2025-22224: \n\u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a VMware ESXi \u0648 Workstation \u0647\u0633\u062a\u0634 \u0648 \u0646\u0627\u0634\u06cc \u0627\u0632 \u06cc\u06a9 \u0636\u0639\u0641 TOCTOU (Time-of-Check Time-of-Use) \u0627\u0633\u062a \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 Out-of-Bounds Write \u0645\u06cc\u0634\u0647. \u0627\u0645\u062a\u06cc\u0627\u0632 9.3 \u0648 \u0634\u062f\u062a \u0628\u062d\u0631\u0627\u0646\u06cc \u062f\u0627\u0631\u0647. \u0645\u0647\u0627\u062c\u0645 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 \u0627\u062f\u0645\u06cc\u0646 \u062f\u0631 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc\u060c \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u062f\u0631 \u0645\u0627\u0634\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0631\u0648 \u062f\u0627\u0631\u0647.\n\n- \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc CVE-2025-22225: \n\u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u0632 \u0646\u0648\u0639 Arbitrary Write \u0648 \u062f\u0631 VMware ESXi \u0647\u0633\u062a\u0634. \u0627\u0645\u062a\u06cc\u0627\u0632 8.2 \u0648 \u0634\u062f\u062a \u0645\u0647\u0645 \u0631\u0648 \u062f\u0627\u0631\u0647. \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u0628\u0647 \u0645\u0647\u0627\u062c\u0645\u06cc \u06a9\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u067e\u0631\u0648\u0633\u0633 VMX  \u062f\u0627\u0631\u0647 (VMX \u06cc\u06a9 \u067e\u0631\u0648\u0633\u0633 \u062f\u0631 \u0645\u0627\u0634\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0647\u0633\u062a\u0634 \u06a9\u0647 \u0645\u0633\u0626\u0648\u0644 \u0627\u062c\u0631\u0627\u06cc \u0645\u0627\u0634\u06cc\u0646\u0647\u0627\u06cc \u0645\u062c\u0627\u0632\u06cc \u062f\u0631 VMware ESXi \u0647\u0633\u062a\u0634.)\u060c \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u062f\u0647 \u06a9\u0647 \u062f\u0627\u062f\u0647\u200c \u0647\u0627\u06cc \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0648 \u062f\u0631 \u062d\u0627\u0641\u0638\u0647 \u06a9\u0631\u0646\u0644 \u0628\u0646\u0648\u06cc\u0633\u0647. \u0627\u06cc\u0646 \u06a9\u0627\u0631 \u0645\u06cc\u062a\u0648\u0646\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 \u0641\u0631\u0627\u0631 \u0627\u0632 \u0633\u0646\u062f\u0628\u0627\u06a9\u0633 \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u06cc\u0637 \u0645\u0627\u0634\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0628\u0634\u0647.\n\n- \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc CVE-2025-22226: \n\u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 ESXi\u060c Workstation \u0648 Fusion \u0647\u0633\u062a\u0634 \u0648 \u0628\u062f\u0644\u06cc\u0644 Out-of-Bounds Read \u062f\u0631 HGFS \u0631\u062e \u0645\u06cc\u062f\u0647 \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0645\u06cc\u0634\u0647. \u0627\u0645\u062a\u06cc\u0627\u0632 7.1 \u0648 \u0634\u062f\u062a \u0645\u0647\u0645 \u062f\u0627\u0631\u0647. \u0645\u0647\u0627\u062c\u0645\u06cc \u06a9\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u062f\u0645\u06cc\u0646 \u0628\u0647 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u062f\u0627\u0631\u0647\u060c \u0645\u06cc\u062a\u0648\u0646\u0647 \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u0628\u0631\u0627\u06cc \u0627\u0641\u0634\u0627\u06cc \u0645\u0645\u0648\u0631\u06cc \u0627\u0632 \u067e\u0631\u0648\u0633\u0633 vmx \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u0647.\n\n\u0628\u0631\u0627\u06cc \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0628\u0633\u062a\u0647 \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u06cc \u06a9\u0647 \u062f\u0627\u0631\u06cc\u062f\u060c \u0627\u0632 \u0627\u06cc\u0646 \u0644\u06cc\u0646\u06a9 \u0627\u0642\u062f\u0627\u0645 \u06a9\u0646\u06cc\u062f.\n\n#\u0628\u0627\u0632\u06cc\u06af\u0631\u0627\u0646_\u062a\u0647\u062f\u06cc\u062f #\u0622\u0633\u06cc\u0628_\u067e\u0630\u06cc\u0631\u06cc_\u0627\u0645\u0646\u06cc\u062a\u06cc \n#CVE #vmware #0day \n\n\ud83c\udd94 @onhex_ir\n\u27a1\ufe0f ALL Link", "creation_timestamp": "2025-03-05T07:17:56.000000Z"}, {"uuid": "c0b16469-35d5-4ee8-a523-ce7f220a503f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "Telegram/eu_R9MIKjoXE1ADq-v_ax3D41RtitzvB6O1pmgzUTRkDYhg", "content": "", "creation_timestamp": "2025-03-06T08:00:55.000000Z"}, {"uuid": "3015708d-8f81-4f02-9b06-fa09cdf0a3b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "Telegram/-0rjY5S9WKVU0M4lJlUGTcMQzloHGej4cVOglwvCgQRkJ5A", "content": "", "creation_timestamp": "2025-03-04T14:01:02.000000Z"}, {"uuid": "4fd4d18f-6a7f-4d9d-8808-148f62a2b37b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "https://t.me/CyberSecurityIL/67189", "content": "\u05db-60 \u05e9\u05e8\u05ea\u05d9\u05dd \u05d1\u05d9\u05e9\u05e8\u05d0\u05dc - \u05de\u05e2\u05dc 37,000 \u05e9\u05e8\u05ea\u05d9 VMware ESXi \u05d4\u05de\u05d7\u05d5\u05d1\u05e8\u05d9\u05dd \u05dc\u05d0\u05d9\u05e0\u05d8\u05e8\u05e0\u05d8 \u05e0\u05de\u05e6\u05d0\u05d5 \u05e4\u05d2\u05d9\u05e2\u05d9\u05dd \u05dc\u05d7\u05d5\u05dc\u05e9\u05ea CVE-2025-22224.\n\n\u05d4\u05d7\u05d5\u05dc\u05e9\u05d4, \u05e9\u05de\u05e0\u05d5\u05e6\u05dc \u05d1\u05e4\u05d5\u05e2\u05dc \u05e2\"\u05d9 \u05ea\u05d5\u05e7\u05e4\u05d9\u05dd \u05d1\u05e2\u05d5\u05dc\u05dd, \u05de\u05d0\u05e4\u05e9\u05e8\u05ea \u05e2\u05dd \u05d4\u05e8\u05e9\u05d0\u05d5\u05ea \u05de\u05e0\u05d4\u05dc \u05d1\u05de\u05db\u05d5\u05e0\u05d4 \u05d4\u05d5\u05d5\u05d9\u05e8\u05d8\u05d5\u05d0\u05dc\u05d9\u05ea \u05dc\u05d4\u05e8\u05d9\u05e5 \u05e7\u05d5\u05d3 \u05e2\u05dc \u05de\u05e2\u05e8\u05db\u05ea \u05d4\u05d4\u05e4\u05e2\u05dc\u05d4 \u05d4\u05de\u05d0\u05e8\u05d7\u05ea. \n\n\u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d4\u05ea\u05d2\u05dc\u05ea\u05d4 \u05e2\u05dc \u05d9\u05d3\u05d9 \u05de\u05d9\u05e7\u05e8\u05d5\u05e1\u05d5\u05e4\u05d8, \u05e9\u05d3\u05d9\u05d5\u05d5\u05d7\u05d4 \u05e2\u05dc \u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05db-zero-day. \n\n\u05d7\u05d1\u05e8\u05ea Broadcom \u05e4\u05e8\u05e1\u05de\u05d4 \u05e2\u05d3\u05db\u05d5\u05e0\u05d9 \u05d0\u05d1\u05d8\u05d7\u05d4 \u05dc\u05ea\u05d9\u05e7\u05d5\u05df \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea, \u05dc\u05e6\u05d3 \u05e9\u05ea\u05d9 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05e0\u05d5\u05e1\u05e4\u05d5\u05ea (CVE-2025-22225 \u05d5-CVE-2025-22226), \u05e9\u05d2\u05dd \u05d4\u05df \u05e0\u05d5\u05e6\u05dc\u05d5 \u05d1\u05de\u05ea\u05e7\u05e4\u05d5\u05ea.\n\n\u05dc\u05d2\u05d1\u05d9 \u05d4\u05e9\u05e8\u05ea\u05d9\u05dd \u05d1\u05d9\u05e9\u05e8\u05d0\u05dc, \u05d4\u05e0\u05ea\u05d5\u05df \u05de\u05d2\u05d9\u05e2 \u05de\u05db\u05d0\u05df\n\nhttps://t.me/CyberSecurityIL/6739\n\n#\u05d7\u05d5\u05dc\u05e9\u05d5\u05ea", "creation_timestamp": "2025-03-07T07:30:58.000000Z"}, {"uuid": "ff97bb54-3ada-48e5-8e9f-75ca6619a3f1", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3ljkuahmtdc23", "content": "", "creation_timestamp": "2025-03-04T16:13:16.816802Z"}, {"uuid": "1d996b41-f68d-4112-973b-71ae996c97e4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljqe6hjm4s2s", "content": "", "creation_timestamp": "2025-03-06T20:41:53.814099Z"}, {"uuid": "ad6c7373-a2c1-45ee-b55f-5eaf52847e41", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ljkvkt5ynd2g", "content": "", "creation_timestamp": "2025-03-04T16:36:57.579721Z"}, {"uuid": "a1cfa219-2400-4441-998f-185cc421d27a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3ljl7dasoy32w", "content": "", "creation_timestamp": "2025-03-04T19:31:41.736086Z"}, {"uuid": "f1011c94-46fc-42d0-a454-b858fad10d4d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/xc0py.bsky.social/post/3ljr7u4xvq22g", "content": "", "creation_timestamp": "2025-03-07T04:57:07.462213Z"}, {"uuid": "7eb6b5bc-3333-4edd-8706-92496309dde7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/chrisshort.net/post/3ljoc5434he2d", "content": "", "creation_timestamp": "2025-03-06T00:59:55.766888Z"}, {"uuid": "ef7f4f36-7235-4826-a4e9-495d0fa5c188", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljlhbw6h4s2z", "content": "", "creation_timestamp": "2025-03-04T21:54:07.627160Z"}, {"uuid": "9540251d-d457-4ee1-9c6a-cf610dfab17b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://mstdn.ca/users/rfwaveio/statuses/114107674753631287", "content": "", "creation_timestamp": "2025-03-05T03:22:29.933484Z"}, {"uuid": "2cdcef1c-e759-464a-9a8b-496bbe0f24d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3lpoiryx2ws22", "content": "", "creation_timestamp": "2025-05-21T11:30:09.157141Z"}, {"uuid": "2e6fe348-7102-4795-b9e1-0c87789f114e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/blackhatnews.tokyo/post/3mbyg254cgt2o", "content": "", "creation_timestamp": "2026-01-09T11:41:07.024748Z"}, {"uuid": "0a959aaf-c857-41b1-9437-c3bf40e4402e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/115865253356847916", "content": "", "creation_timestamp": "2026-01-09T12:57:41.120906Z"}, {"uuid": "a763fdae-8fcb-40d4-a451-b854ac444f8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3mbykevscbs2c", "content": "", "creation_timestamp": "2026-01-09T12:58:44.321418Z"}, {"uuid": "448136c4-5a20-4b28-ac07-11bba4524577", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/f5e26632-2e27-44d4-8620-cfc829f6488a", "content": "", "creation_timestamp": "2025-03-04T15:17:20.591694Z"}, {"uuid": "08d5b943-316c-46de-b373-22881a7a9e0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6366", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22225\n\ud83d\udd25 CVSS Score: 8.2 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H)\n\ud83d\udd39 Description: VMware ESXi contains an arbitrary write\u00a0vulnerability.\u00a0A malicious actor with privileges within the VMX process may trigger an arbitrary kernel write leading to an escape of the sandbox.\n\ud83d\udccf Published: 2025-03-04T11:56:27.537Z\n\ud83d\udccf Modified: 2025-03-04T11:56:27.537Z\n\ud83d\udd17 References:\n1. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390", "creation_timestamp": "2025-03-04T12:31:26.000000Z"}, {"uuid": "e7cb2ea9-14f2-4e82-85e9-f2a61f096623", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "seen", "source": "https://t.me/ics_cert/1067", "content": "\u06a9\u0645\u067e\u06cc\u0646 \u0645\u0631\u062a\u0628\u0637 \u0628\u0627 \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0633\u0647 \u06a9\u0645\u067e\u06cc\u0646 \u0631\u0648\u0632\u0635\u0641\u0631 VMware \u06a9\u0647 \u0627\u062e\u06cc\u0631\u0627\u064b \u0648\u0635\u0644\u0647 \u0634\u062f\u0647 \u0627\u0646\u062f\u060c \u0627\u06a9\u0646\u0648\u0646 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 ESXicape \u0631\u062f\u06cc\u0627\u0628\u06cc \u0645\u06cc \u0634\u0648\u062f \u0648 \u062f\u0647 \u0647\u0627 \u0647\u0632\u0627\u0631 \u0646\u0645\u0648\u0646\u0647 \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f\u060c \u0647\u0645\u0627\u0646\u0637\u0648\u0631 \u06a9\u0647 \u0646\u062a\u0627\u06cc\u062c \u0627\u0633\u06a9\u0646 \u0641\u0639\u0644\u06cc \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f.\n\n\u062f\u0631 4 \u0645\u0627\u0631\u0633\u060c Broadcom \u0628\u0647 \u0645\u0634\u062a\u0631\u06cc\u0627\u0646 ESXi\u060c Workstation \u0648 Fusion \u0647\u0634\u062f\u0627\u0631 \u062f\u0627\u062f \u06a9\u0647 \u0627\u0635\u0644\u0627\u062d\u0627\u062a \u0641\u0648\u0631\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc CVE-2025-22224\u060c CVE-2025-22225 \u0648 CVE-2025-22226 \u0645\u0646\u062a\u0634\u0631 \u06a9\u0646\u0646\u062f\u060c \u06a9\u0647 \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u062f\u0644\u062e\u0648\u0627\u0647\u060c \u0641\u0631\u0627\u0631\u0647\u0627\u06cc \u062d\u0627\u0641\u0638\u0647 sandbox \u0634\u0648\u062f.\u00a0\n\n\u06a9\u0634\u0641 \u0628\u0627\u06af\u200c\u0647\u0627 \u0628\u0647 \u0645\u0631\u06a9\u0632 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062a\u0647\u062f\u06cc\u062f\u0627\u062a \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0646\u0633\u0628\u062a \u062f\u0627\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f (\u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0627\u062d\u062a\u0645\u0627\u0644\u0627\u064b \u0634\u0627\u0647\u062f \u062d\u0645\u0644\u0627\u062a \u0631\u0648\u0632\u0635\u0641\u0631 \u0646\u06cc\u0632 \u0628\u0648\u062f\u0647 \u0627\u0633\u062a)\u060c \u0627\u0645\u0627 \u0646\u0647 Broadcom \u0648 \u0646\u0647 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0647\u06cc\u0686 \u0627\u0637\u0644\u0627\u0639\u0627\u062a\u06cc \u062f\u0631 \u0645\u0648\u0631\u062f \u0641\u0639\u0627\u0644\u06cc\u062a \u0645\u062e\u0631\u0628 \u0645\u0634\u0627\u0647\u062f\u0647 \u0634\u062f\u0647 \u0628\u0647 \u0627\u0634\u062a\u0631\u0627\u06a9 \u0646\u06af\u0630\u0627\u0634\u062a\u0647\u200c\u0627\u0646\u062f.\u00a0\n\n\u0645\u062d\u0642\u0642\u0627\u0646 Netlas \u06af\u0632\u0627\u0631\u0634 \u062f\u0627\u062f\u0647 \u0627\u0646\u062f \u06a9\u0647 \u0628\u06cc\u0634 \u0627\u0632 7000 \u0646\u0645\u0648\u0646\u0647 VMware ESXi \u0645\u062a\u0635\u0644 \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0631\u0627 \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f\u0647 \u0627\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0646\u0638\u0631 \u0645\u06cc \u0631\u0633\u062f \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0647\u0633\u062a\u0646\u062f.\u00a0\n\n\u0628\u0647 \u0646\u0648\u0628\u0647 \u062e\u0648\u062f\u060c \u0628\u0646\u06cc\u0627\u062f Shadowserver \u0628\u06cc\u0634 \u0627\u0632 41000 \u0646\u0645\u0648\u0646\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 ESXi \u0631\u0627 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0628\u06cc\u0634\u062a\u0631 \u0622\u0646\u0647\u0627 \u062f\u0631 \u0686\u06cc\u0646\u060c \u0641\u0631\u0627\u0646\u0633\u0647\u060c \u0627\u06cc\u0627\u0644\u0627\u062a \u0645\u062a\u062d\u062f\u0647 \u0622\u0645\u0631\u06cc\u06a9\u0627\u060c \u0622\u0644\u0645\u0627\u0646\u060c \u0627\u06cc\u0631\u0627\u0646\u060c \u0628\u0631\u0632\u06cc\u0644 \u0648 \u06a9\u0631\u0647 \u062c\u0646\u0648\u0628\u06cc \u0648 \u0631\u0648\u0633\u06cc\u0647 \u0642\u0631\u0627\u0631 \u062f\u0627\u0631\u0646\u062f.\n\n\u0627\u0633\u06a9\u0646\u200c\u0647\u0627\u06cc \u0622\u0646\u200c\u0647\u0627 CVE-2025-22224 \u0631\u0627 \u0647\u062f\u0641 \u0642\u0631\u0627\u0631 \u062f\u0627\u062f\u0646\u062f\u060c \u0627\u0645\u0627 \u0646\u0645\u0648\u0646\u0647\u200c\u0647\u0627\u06cc \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc\u200c\u0634\u062f\u0647 \u0627\u062d\u062a\u0645\u0627\u0644\u0627\u064b \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062f\u06cc\u06af\u0631 \u0642\u0631\u0627\u0631 \u06af\u0631\u0641\u062a\u0646\u062f\u060c \u0632\u06cc\u0631\u0627 \u0647\u0645\u06af\u06cc \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631 \u0645\u0634\u0627\u0628\u0647\u06cc \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u062f\u0627\u062f\u0646\u062f.\n\n\u062c\u0632\u0626\u06cc\u0627\u062a \u0641\u0646\u06cc \u0648 PoC \u0647\u0646\u0648\u0632 \u062f\u0631 \u062f\u0633\u062a\u0631\u0633 \u0646\u06cc\u0633\u062a\u060c \u06a9\u0647 \u0627\u062d\u062a\u0645\u0627\u0644\u0627\u064b \u062f\u0631 \u062d\u0627\u0644 \u062d\u0627\u0636\u0631 \u0634\u0631\u0648\u0639 \u0639\u0645\u0644\u06cc\u0627\u062a \u062f\u0631 \u0645\u0642\u06cc\u0627\u0633 \u0628\u0632\u0631\u06af \u0631\u0627 \u0645\u062a\u0648\u0642\u0641 \u0645\u06cc \u06a9\u0646\u062f.\u00a0\n\n\u0645\u062d\u0642\u0642 Kevin Beaumont \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0631\u0627 ESXicape \u0646\u0627\u0645\u06cc\u062f\u0647 \u0627\u0633\u062a \u0648 \u062a\u0648\u0636\u06cc\u062d \u0645\u06cc\u200c\u062f\u0647\u062f \u06a9\u0647 \u062f\u0631 \u0635\u0648\u0631\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 ESX\u060c \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0647\u0645\u0647 \u0686\u06cc\u0632 \u062f\u0631 \u0633\u0631\u0648\u0631 ESX\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 \u062f\u0627\u062f\u0647\u200c\u0647\u0627\u06cc \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0648 \u0645\u0647\u0645\u200c\u062a\u0631 \u0627\u0632 \u0647\u0645\u0647\u060c \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc ESX \u0648 \u0630\u062e\u06cc\u0631\u0647\u200c\u0633\u0627\u0632\u06cc \u0646\u0635\u0628 \u0634\u062f\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u067e\u06cc\u062f\u0627 \u06a9\u0646\u062f \u0648 \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0631\u0627\u06cc \u067e\u06cc\u0645\u0627\u06cc\u0634 \u062f\u0631 \u0645\u062d\u06cc\u0637 VMware \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n\u0628\u0646\u0627\u0628\u0631\u0627\u06cc\u0646\u060c \u0627\u06af\u0631 \u0633\u0627\u0632\u0645\u0627\u0646\u06cc \u0627\u0632 vMotion \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f \u062a\u0627 \u0628\u0647 \u0645\u0627\u0634\u06cc\u0646\u200c\u0647\u0627\u06cc \u0645\u062c\u0627\u0632\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0628\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646\u200c\u0647\u0627\u06cc ESX \u062d\u0631\u06a9\u062a \u06a9\u0646\u0646\u062f\u060c \u0628\u0627\u0631\u0647\u0627 \u0631\u0627 \u0645\u062a\u0639\u0627\u062f\u0644 \u06a9\u0631\u062f\u0647 \u0648 \u062e\u062f\u0645\u0627\u062a \u0627\u0631\u0627\u0626\u0647 \u062f\u0647\u0646\u062f\u060c \u0645\u0647\u0627\u062c\u0645 \u0628\u0647 \u0641\u0636\u0627\u06cc \u0630\u062e\u06cc\u0631\u0647\u200c\u0633\u0627\u0632\u06cc \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0647\u0645 \u062f\u0631 \u0622\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0648 \u0647\u0645 \u062f\u0631 \u062e\u0627\u0631\u062c \u0627\u0632 \u0622\u0646\u060c \u0628\u0631 \u0627\u0633\u0627\u0633 \u0637\u0631\u0627\u062d\u06cc\u060c \u062f\u0633\u062a\u0631\u0633\u06cc \u0645\u0633\u062a\u0642\u06cc\u0645 \u062f\u0627\u0631\u062f - \u0622\u0646\u0647\u0627 \u0627\u0633\u0627\u0633\u0627\u064b \u062f\u0631 backend \u0631\u0627\u06cc\u06af\u0627\u0646 \u0647\u0633\u062a\u0646\u062f.\n\n\u0628\u0647 \u06af\u0641\u062a\u0647 \u0627\u06cc\u0646 \u0645\u062d\u0642\u0642\u060c \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0628\u0631\u0627\u06cc \u062f\u0648\u0631 \u0632\u062f\u0646 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u062f\u0627\u0631\u0627\u06cc\u06cc\u200c\u0647\u0627\u06cc \u0627\u0631\u0632\u0634\u0645\u0646\u062f \u0645\u0627\u0646\u0646\u062f \u067e\u0627\u06cc\u06af\u0627\u0647\u200c\u062f\u0627\u062f\u0647\u200c\u0647\u0627\u06cc \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647 \u062f\u0627\u0645\u0646\u0647 Active Directory \u0628\u062f\u0648\u0646 \u0627\u06cc\u062c\u0627\u062f \u0647\u0634\u062f\u0627\u0631 \u0633\u0648\u0621 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u0646\u062f.\n\n\u0648 \u0627\u06cc\u0646 \u0627\u063a\u0644\u0628 \u062f\u0631 \u062d\u0648\u0627\u062f\u062b \u0628\u0627\u062c\u200c\u0627\u0641\u0632\u0627\u0631 \u0645\u0634\u0627\u0647\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f\u060c \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0627\u0632 \u06cc\u06a9 \u0633\u0631\u0648\u0631 ESX \u06cc\u0627 vCenter \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0645\u062f\u06cc\u0631\u06cc\u062a VMware \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0627\u0635\u0644\u0627\u062d \u0646\u0634\u062f\u0647 \u0633\u0648\u0621 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f. \u0647\u0646\u06af\u0627\u0645\u06cc \u06a9\u0647 \u0647\u06a9\u0631\u0647\u0627 \u0628\u0647 ESX \u0645\u06cc \u0631\u0633\u0646\u062f\u060c \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0647 \u0641\u0636\u0627\u06cc \u0630\u062e\u06cc\u0631\u0647 \u0633\u0627\u0632\u06cc \u062f\u0631 \u0633\u0631\u0627\u0633\u0631 \u062e\u0648\u0634\u0647 \u0646\u0641\u0648\u0630 \u0645\u06cc \u06a9\u0646\u0646\u062f.\n\n\u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644\u060c \u0627\u0645\u06a9\u0627\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0645\u0633\u062a\u0642\u06cc\u0645 \u0628\u0647 \u0647\u0627\u06cc\u067e\u0631\u0648\u0627\u06cc\u0632\u0631 \u0633\u0631\u0648\u0631 ESX \u0627\u0632 \u06cc\u06a9 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0628\u0647 \u0637\u0648\u0631 \u0642\u0627\u0628\u0644 \u062a\u0648\u062c\u0647\u06cc \u062e\u0637\u0631 \u0631\u0627 \u0627\u0641\u0632\u0627\u06cc\u0634 \u0645\u06cc \u062f\u0647\u062f. \u0646\u06cc\u0627\u0632\u06cc \u0628\u0647 \u062c\u0633\u062a\u062c\u0648\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0633\u0631\u0648\u0631 ESX \u06cc\u0627 \u0627\u062a\u0635\u0627\u0644 \u0628\u0647 \u0634\u0628\u06a9\u0647 \u0627\u06cc\u0632\u0648\u0644\u0647 \u0646\u06cc\u0633\u062a.\n\n\n\ud83c\udfed \u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\ud83d\udc6e\ud83c\udffd\u200d\u2640\ufe0f\u0647\u0631\u06af\u0648\u0646\u0647 \u0627\u0646\u062a\u0634\u0627\u0631 \u0648 \u0630\u06a9\u0631 \u0645\u0637\u0627\u0644\u0628 \u0628\u062f\u0648\u0646 \u0630\u06a9\u0631 \u062f\u0642\u06cc\u0642 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u0644\u06cc\u0646\u06a9 \u0622\u0646 \u0645\u0645\u0646\u0648\u0639 \u0627\u0633\u062a. \n\u0627\u062f\u0645\u06cc\u0646:\n\u200fhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u0648\u0627\u062a\u0633 \u0622\u067e :\nhttps://chat.whatsapp.com/FpB620AWEeSKvd8U6cFh33\n\u06af\u0631\u0648\u0647 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ICSCERT_IR", "creation_timestamp": "2025-03-31T21:52:35.000000Z"}, {"uuid": "ab31c6fd-c899-4aa8-bae0-2b0555a24817", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22225", "type": "exploited", "source": "https://t.me/true_secator/6806", "content": "Broadcom \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430\u0441\u044c \u0441\u043e \u0441\u0440\u043e\u0447\u043d\u044b\u043c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435\u043c \u0438 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u0435\u0442 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u0442\u0440\u0435\u0445 0-day VMware, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u044b \u0432 \u0445\u043e\u0434\u0435 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a, \u043e \u0447\u0435\u043c \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Microsoft.\n\nCVE-2025-22224, CVE-2025-22225 \u0438 CVE-2025-22226 (CVSS 9.3, 8.2 \u0438 7.1) \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 VMware ESX, \u0432\u043a\u043b\u044e\u0447\u0430\u044f VMware ESXi, vSphere, Workstation, Fusion, Cloud Foundation \u0438 Telco Cloud Platform, \u0438 \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u043c\u043e\u0433\u0443\u0442 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0442\u044c \u0432\u044b\u0445\u043e\u0434 \u0438\u0437 \u00ab\u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b\u00bb \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b.\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a, \u043a\u043e\u0442\u043e\u0440\u043e\u043c\u0443 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0433\u043e\u0441\u0442\u0435\u0432\u0443\u044e \u041e\u0421 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f (\u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440 \u0438\u043b\u0438 root), \u043c\u043e\u0436\u0435\u0442 \u043f\u0435\u0440\u0435\u0439\u0442\u0438 \u0432 \u0441\u0430\u043c \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Broadcom, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u044d\u0442\u0438\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0443\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435.\n\nCVE-2025-22224 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u0443\u0447\u0438 VCMI, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u043d\u0430 \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 VMX, \u0437\u0430\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0433\u043e \u043d\u0430 \u0445\u043e\u0441\u0442\u0435.\n\n\u0414\u0440\u0443\u0433\u0430\u044f, CVE-2025-22225 \u0432 ESXi, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0443 VMX \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u0443\u044e \u0437\u0430\u043f\u0438\u0441\u044c \u044f\u0434\u0440\u0430, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0432\u044b\u0445\u043e\u0434\u0443 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b.\n\n\u0418, \u043d\u0430\u043a\u043e\u043d\u0435\u0446, CVE-2025-22226 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043e\u0448\u0438\u0431\u043a\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 HGFS, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u0432\u044b\u0437\u044b\u0432\u0430\u0442\u044c \u0443\u0442\u0435\u0447\u043a\u0443 \u043f\u0430\u043c\u044f\u0442\u0438 \u0438\u0437 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 VMX.\n\nMicrosoft \u043f\u043e\u043a\u0430 \u043d\u0435 \u043e\u0441\u043e\u0431\u043e \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u043f\u043e \u043f\u043e\u0432\u043e\u0434\u0443 \u0441\u0432\u043e\u0438\u0445 \u043d\u0430\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u0439 \u043f\u043e \u0447\u0430\u0441\u0442\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u043e\u0434\u043d\u0430\u043a\u043e, \u043a\u0430\u043a \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 VMWare \u0444\u0438\u0433\u0443\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0432 \u00ab\u043c\u0435\u043d\u044e\u00bb \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0438 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439, \u0438 APT, \u0438 \u0434\u0440.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u0431\u0443\u0434\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c \u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u0442\u044c.", "creation_timestamp": "2025-03-05T12:00:06.000000Z"}]}