{"vulnerability": "CVE-2025-22226", "sightings": [{"uuid": "5b741e9b-4ac2-4d68-b650-91c82df5e60b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/ViralCyber/11425", "content": "\ud83d\udd34 \u0647\u0634\u062f\u0627\u0631 \u067e\u0686 \u0641\u0648\u0631\u06cc \u0646\u0642\u0627\u06cc\u0635 \u0627\u0645\u0646\u06cc\u062a\u06cc VMware \u062a\u062d\u062a \u0633\u0648\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0641\u0639\u0627\u0644 \u062f\u0631 \u0641\u0636\u0627\u06cc \u0633\u0627\u06cc\u0628\u0631\u06cc\n\n\u0645\u062c\u0645\u0648\u0639\u0647 Broadcom \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc\u200c\u0647\u0627\u06cc\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc \u0631\u0641\u0639 \u0633\u0647 \u0646\u0642\u0635 \u0627\u0645\u0646\u06cc\u062a\u06cc \u0641\u0639\u0627\u0644 \u062f\u0631 VMware ESXi\u060c Workstation \u0648 Fusion \u0645\u0646\u062a\u0634\u0631 \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0648 \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0634\u0648\u0646\u062f.\n\n\u0644\u06cc\u0633\u062a \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0628\u0647 \u0634\u0631\u062d \u0632\u06cc\u0631 \u0627\u0633\u062a:\n\n\u2022 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2025-22224: \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc TOCTOU\u06a9\u0647 \u200b\u200b\u0645\u0646\u062c\u0631 \u0628\u0647 \u0646\u0648\u0634\u062a\u0646 \u062e\u0627\u0631\u062c \u0627\u0632 \u0645\u062d\u062f\u0648\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f\u060c \u06a9\u0647 \u0639\u0627\u0645\u0644 \u0645\u062e\u0631\u0628 \u0628\u0627 \u0627\u062e\u062a\u06cc\u0627\u0631\u0627\u062a \u0627\u062f\u0645\u06cc\u0646 \u062f\u0631 \u06cc\u06a9 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u062f\u0631 \u062d\u0627\u0644 \u0627\u062c\u0631\u0627\u06cc \u0645\u06cc\u0632\u0628\u0627\u0646 MX \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n\u2022 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2025-22225: \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0646\u0648\u0634\u062a\u0646 \u062f\u0644\u062e\u0648\u0627\u0647 \u06a9\u0647 \u06cc\u06a9 \u0639\u0627\u0645\u0644 \u0645\u062e\u0631\u0628 \u0628\u0627 \u0627\u062e\u062a\u06cc\u0627\u0631\u0627\u062a \u062f\u0631 \u0641\u0631\u0622\u06cc\u0646\u062f VMX \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u0627\u06cc\u062c\u0627\u062f \u0631\u0627\u0647 \u0641\u0631\u0627\u0631 \u0627\u0632 sandbox \u0633\u0648\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n\u2022 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc CVE-2025-22226: \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0628\u0647 \u062f\u0644\u06cc\u0644 \u062e\u0648\u0627\u0646\u0634 \u062e\u0627\u0631\u062c \u0627\u0632 \u0645\u062d\u062f\u0648\u062f\u0647 \u062f\u0631 HGFS \u06a9\u0647 \u06cc\u06a9 \u0639\u0627\u0645\u0644 \u0645\u062e\u0631\u0628 \u0628\u0627 \u0627\u062e\u062a\u06cc\u0627\u0631\u0627\u062a \u0627\u062f\u0645\u06cc\u0646 \u0628\u0631\u0627\u06cc \u06cc\u06a9 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0627\u0632 \u0622\u0646 \u0628\u0631\u0627\u06cc \u0646\u0634\u062a \u062d\u0627\u0641\u0638\u0647 \u0627\u0632 \u0641\u0631\u0622\u06cc\u0646\u062f vmx \u0633\u0648\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n#Cybersecurity #Cyber_Attack #VMware #Patch #Virtual_Machine #VMX #ESXi #Broadcom #Fusion #\u0627\u0645\u0646\u06cc\u062a_\u0633\u0627\u06cc\u0628\u0631\u06cc #\u062d\u0645\u0644\u0647_\u0633\u0627\u06cc\u0628\u0631\u06cc #\u067e\u0686 #\u0631\u0648\u0632_\u0635\u0641\u0631\n\n\u0645\u0637\u0627\u0644\u0639\u0647 \u06a9\u0627\u0645\u0644 \u062e\u0628\u0631 \ud83d\udc49\n\n\ud83c\udd94 @Takianco\n\ud83c\uddee\ud83c\uddf7", "creation_timestamp": "2025-03-09T10:50:15.000000Z"}, {"uuid": "eb876ec2-f9f9-443e-87fe-3bb784fb4b8f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/ViralCyber/11303", "content": "\ud83d\udd34 \u0627\u0635\u0644\u0627\u062d \u0633\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc 0Day \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a VMware\n\n\u06a9\u0645\u067e\u0627\u0646\u06cc Broadcom \u0627\u0645\u0631\u0648\u0632 \u062e\u0628\u0631 \u0627\u0632 \u0627\u0635\u0644\u0627\u062d \u0633\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc 0day \u062f\u0627\u062f\u0647 \u06a9\u0647 \u062f\u0631 \u062d\u0645\u0644\u0627\u062a\u06cc \u0645\u0648\u0631\u062f \u0627\u06a9\u0633\u067e\u0644\u0648\u06cc\u062a \u0642\u0631\u0627\u0631 \u06af\u0631\u0641\u062a\u0646.\n\n\u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627 \u062a\u0648\u0633\u0637 Microsoft Threat Intelligence Center \u06af\u0632\u0627\u0631\u0634 \u0634\u062f\u0646.\n\n- \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc CVE-2025-22224: \n\u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0645\u062d\u0635\u0648\u0644\u0627\u062a VMware ESXi \u0648 Workstation \u0647\u0633\u062a\u0634 \u0648 \u0646\u0627\u0634\u06cc \u0627\u0632 \u06cc\u06a9 \u0636\u0639\u0641 TOCTOU (Time-of-Check Time-of-Use) \u0627\u0633\u062a \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 Out-of-Bounds Write \u0645\u06cc\u0634\u0647. \u0627\u0645\u062a\u06cc\u0627\u0632 9.3 \u0648 \u0634\u062f\u062a \u0628\u062d\u0631\u0627\u0646\u06cc \u062f\u0627\u0631\u0647. \u0645\u0647\u0627\u062c\u0645 \u0628\u0627 \u0627\u0645\u062a\u06cc\u0627\u0632 \u0627\u062f\u0645\u06cc\u0646 \u062f\u0631 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc\u060c \u0627\u0645\u06a9\u0627\u0646 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u062f\u0631 \u0645\u0627\u0634\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0631\u0648 \u062f\u0627\u0631\u0647.\n\n- \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc CVE-2025-22225: \n\u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0627\u0632 \u0646\u0648\u0639 Arbitrary Write \u0648 \u062f\u0631 VMware ESXi \u0647\u0633\u062a\u0634. \u0627\u0645\u062a\u06cc\u0627\u0632 8.2 \u0648 \u0634\u062f\u062a \u0645\u0647\u0645 \u0631\u0648 \u062f\u0627\u0631\u0647. \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u0628\u0647 \u0645\u0647\u0627\u062c\u0645\u06cc \u06a9\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u067e\u0631\u0648\u0633\u0633 VMX  \u062f\u0627\u0631\u0647 (VMX \u06cc\u06a9 \u067e\u0631\u0648\u0633\u0633 \u062f\u0631 \u0645\u0627\u0634\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0647\u0633\u062a\u0634 \u06a9\u0647 \u0645\u0633\u0626\u0648\u0644 \u0627\u062c\u0631\u0627\u06cc \u0645\u0627\u0634\u06cc\u0646\u0647\u0627\u06cc \u0645\u062c\u0627\u0632\u06cc \u062f\u0631 VMware ESXi \u0647\u0633\u062a\u0634.)\u060c \u0627\u062c\u0627\u0632\u0647 \u0645\u06cc\u062f\u0647 \u06a9\u0647 \u062f\u0627\u062f\u0647\u200c \u0647\u0627\u06cc \u062f\u0644\u062e\u0648\u0627\u0647 \u0631\u0648 \u062f\u0631 \u062d\u0627\u0641\u0638\u0647 \u06a9\u0631\u0646\u0644 \u0628\u0646\u0648\u06cc\u0633\u0647. \u0627\u06cc\u0646 \u06a9\u0627\u0631 \u0645\u06cc\u062a\u0648\u0646\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 \u0641\u0631\u0627\u0631 \u0627\u0632 \u0633\u0646\u062f\u0628\u0627\u06a9\u0633 \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0645\u062d\u06cc\u0637 \u0645\u0627\u0634\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0628\u0634\u0647.\n\n- \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc CVE-2025-22226: \n\u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 ESXi\u060c Workstation \u0648 Fusion \u0647\u0633\u062a\u0634 \u0648 \u0628\u062f\u0644\u06cc\u0644 Out-of-Bounds Read \u062f\u0631 HGFS \u0631\u062e \u0645\u06cc\u062f\u0647 \u06a9\u0647 \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u0641\u0634\u0627\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0645\u06cc\u0634\u0647. \u0627\u0645\u062a\u06cc\u0627\u0632 7.1 \u0648 \u0634\u062f\u062a \u0645\u0647\u0645 \u062f\u0627\u0631\u0647. \u0645\u0647\u0627\u062c\u0645\u06cc \u06a9\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u062f\u0645\u06cc\u0646 \u0628\u0647 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u062f\u0627\u0631\u0647\u060c \u0645\u06cc\u062a\u0648\u0646\u0647 \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c \u067e\u0630\u06cc\u0631\u06cc \u0628\u0631\u0627\u06cc \u0627\u0641\u0634\u0627\u06cc \u0645\u0645\u0648\u0631\u06cc \u0627\u0632 \u067e\u0631\u0648\u0633\u0633 vmx \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u0647.\n\n\u0628\u0631\u0627\u06cc \u0628\u0631\u0648\u0632\u0631\u0633\u0627\u0646\u06cc \u0628\u0633\u062a\u0647 \u0628\u0647 \u0645\u062d\u0635\u0648\u0644\u06cc \u06a9\u0647 \u062f\u0627\u0631\u06cc\u062f\u060c \u0627\u0632 \u0627\u06cc\u0646 \u0644\u06cc\u0646\u06a9 \u0627\u0642\u062f\u0627\u0645 \u06a9\u0646\u06cc\u062f.\n\n#\u0628\u0627\u0632\u06cc\u06af\u0631\u0627\u0646_\u062a\u0647\u062f\u06cc\u062f #\u0622\u0633\u06cc\u0628_\u067e\u0630\u06cc\u0631\u06cc_\u0627\u0645\u0646\u06cc\u062a\u06cc \n#CVE #vmware #0day \n\n\ud83c\udd94 @onhex_ir\n\u27a1\ufe0f ALL Link", "creation_timestamp": "2025-03-05T07:17:56.000000Z"}, {"uuid": "d26a64dc-bf7f-4fd9-8fe5-0b40f1381441", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "Telegram/eu_R9MIKjoXE1ADq-v_ax3D41RtitzvB6O1pmgzUTRkDYhg", "content": "", "creation_timestamp": "2025-03-06T08:00:55.000000Z"}, {"uuid": "88fab617-365b-42d9-a9ed-8e56f3ebfb0c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "Telegram/-0rjY5S9WKVU0M4lJlUGTcMQzloHGej4cVOglwvCgQRkJ5A", "content": "", "creation_timestamp": "2025-03-04T14:01:02.000000Z"}, {"uuid": "dfd611bc-a0ce-4aa6-8077-1cd431c532ca", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/true_secator/6810", "content": "\u0421\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0435\u0439 \u0442\u0440\u0435\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0434\u043d\u044f\u0445 0-day VMware \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u0442\u0435\u043f\u0435\u0440\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a ESXicape \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0442\u044b\u0441\u044f\u0447 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432, \u043e \u0447\u0435\u043c \u0441\u0432\u0438\u0434\u0435\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0443\u044e\u0442 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f.\n\n4 \u043c\u0430\u0440\u0442\u0430 Broadcom \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 ESXi, Workstation \u0438 Fusion \u043e \u0432\u044b\u043f\u0443\u0441\u043a\u0435 \u0441\u0440\u043e\u0447\u043d\u044b\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u0434\u043b\u044f CVE-2025-22224, CVE-2025-22225 \u0438 CVE-2025-22226, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430, \u0432\u044b\u0445\u043e\u0434\u0443 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b \u0438 \u0443\u0442\u0435\u0447\u043a\u0430\u043c \u043f\u0430\u043c\u044f\u0442\u0438.\u00a0\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043e\u043a \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f Microsoft Threat Intelligence Center (\u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, Microsoft \u0442\u0430\u043a\u0436\u0435 \u0432\u0438\u0434\u0435\u043b\u0430 \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c 0-day), \u043d\u043e \u043d\u0438 Broadcom, \u043d\u0438 Microsoft \u043d\u0435 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0435\u0439 \u043e \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u043e\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Netlas \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e\u0431 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0438 \u0431\u043e\u043b\u0435\u0435 7000 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 VMware ESXi, \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u043d\u044b\u0445 \u043a \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0435, \u043f\u043e-\u0432\u0438\u0434\u0438\u043c\u043e\u043c\u0443, \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c.\u00a0\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Shadowserver Foundation \u0432\u044b\u044f\u0432\u0438\u043b\u0430 \u0431\u043e\u043b\u0435\u0435 41 000 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 ESXi, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u041a\u0438\u0442\u0430\u0435, \u0424\u0440\u0430\u043d\u0446\u0438\u0438, \u0421\u0428\u0410, \u0413\u0435\u0440\u043c\u0430\u043d\u0438\u0438, \u0418\u0440\u0430\u043d\u0435, \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u0438 \u0438 \u042e\u0436\u043d\u043e\u0439 \u041a\u043e\u0440\u0435\u0435 (\u0432 \u0420\u0424 - \u0431\u043e\u043b\u0435\u0435 700).\n\n\u0418\u0445 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0431\u044b\u043b\u0438 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 CVE-2025-22224, \u043d\u043e \u0434\u0435\u0442\u0435\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b \u0438 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0432\u0441\u0435 \u043e\u043d\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u043e\u0434\u043d\u0438 \u0438 \u0442\u0435 \u0436\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u041f\u041e.\n\n\u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u0438 PoC \u043f\u043e\u043a\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b, \u0447\u0442\u043e, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043d\u0430 \u0442\u0435\u043a\u0443\u0449\u0438\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0441\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u0442 \u043d\u0430\u0447\u0430\u043b\u043e \u0448\u0438\u0440\u043e\u043a\u043e\u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u041a\u0435\u0432\u0438\u043d \u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u043a\u0440\u0435\u0441\u0442\u0438\u043b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438\u00a0\u043a\u0430\u043a ESXicape, \u043f\u043e\u044f\u0441\u043d\u044f\u044f, \u0447\u0442\u043e \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a ESX, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a\u043e \u0432\u0441\u0435\u043c\u0443 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0430\u043d\u043d\u044b\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0438, \u0447\u0442\u043e \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0432\u0430\u0436\u043d\u043e, \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e ESX \u0438 \u0441\u043c\u043e\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435, \u0430 \u0432 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043d\u0438\u0445 - \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043f\u043e \u0441\u0440\u0435\u0434\u0435 VMware.\n\n\u0422\u0430\u043a, \u0435\u0441\u043b\u0438 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f vMotion, \u0447\u0442\u043e\u0431\u044b \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0435 \u043c\u0430\u0448\u0438\u043d\u044b \u043c\u043e\u0433\u043b\u0438 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043c\u0435\u0436\u0434\u0443 \u0445\u043e\u0441\u0442\u0430\u043c\u0438 ESX, \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u0443\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0435, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u0442 \u043f\u0440\u044f\u043c\u043e\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0443 \u0412\u041c \u043a\u0430\u043a \u043d\u0430\u00a0\u044d\u0442\u043e\u043c \u0445\u043e\u0441\u0442\u0435, \u0442\u0430\u043a \u0438 \u0437\u0430 \u0435\u0433\u043e \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438\u00a0\u043f\u043e \u0437\u0430\u043c\u044b\u0441\u043b\u0443 \u2014 \u043e\u043d\u0438, \u043f\u043e \u0441\u0443\u0442\u0438, \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u044b \u043d\u0430 \u0431\u044d\u043a\u044d\u043d\u0434\u0435.\n\n\u041f\u043e \u0441\u043b\u043e\u0432\u0430\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0447\u0442\u043e\u0431\u044b \u043e\u0431\u043e\u0439\u0442\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0446\u0435\u043d\u043d\u044b\u043c \u0430\u043a\u0442\u0438\u0432\u0430\u043c, \u0442\u0430\u043a\u0438\u043c \u043a\u0430\u043a \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u043e\u0432 \u0434\u043e\u043c\u0435\u043d\u0430 Active Directory, \u043d\u0435 \u0432\u044b\u0437\u044b\u0432\u0430\u044f \u043e\u043f\u043e\u0432\u0435\u0449\u0435\u043d\u0438\u0439.\n\n\u0410 \u044d\u0442\u043e \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0447\u0430\u0441\u0442\u043e \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u0442\u0441\u044f \u0432 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u0445 \u0441 ransomware, \u043a\u043e\u0433\u0434\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442 \u0441\u0435\u0440\u0432\u0435\u0440 ESX \u0438\u043b\u0438 vCenter \u0447\u0435\u0440\u0435\u0437 \u0441\u0435\u0442\u044c \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f VMware, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043d\u0435\u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. \u041a\u0430\u043a \u0442\u043e\u043b\u044c\u043a\u043e \u0445\u0430\u043a\u0435\u0440\u044b \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u044e\u0442 ESX, \u043e\u043d\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u043f\u0440\u043e\u043d\u0438\u043a\u0430\u044e\u0442 \u0432 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0443.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u0443 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 ESX \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u043e\u0432\u044b\u0448\u0430\u0435\u0442 \u0440\u0438\u0441\u043a. \u041d\u0435 \u043d\u0443\u0436\u043d\u043e \u0438\u0441\u043a\u0430\u0442\u044c \u0441\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043e \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX \u0438\u043b\u0438 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0430\u0442\u044c\u0441\u044f \u043a \u0438\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0441\u0435\u0442\u0438.\n\n\u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0432 \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435 \u0431\u044b\u043b \u0437\u0430\u043c\u0435\u0447\u0435\u043d \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \u043f\u043e\u0431\u0435\u0433\u0430 \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b ESXi \u043f\u043e \u0446\u0435\u043d\u0435 150 000 \u0434\u043e\u043b\u043b., \u043d\u043e \u043d\u0435\u044f\u0441\u043d\u043e, \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u043b\u0438 \u043e\u043d \u0438 \u0441\u0432\u044f\u0437\u0430\u043d \u043b\u0438 \u0441 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 0-day, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u043c\u0438 \u043d\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435.\n\n\u0411\u0443\u0434\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c.", "creation_timestamp": "2025-03-06T12:23:40.000000Z"}, {"uuid": "9d6d8738-9113-4236-811f-d37d0347d62f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "exploited", "source": "https://t.me/CyberSecurityIL/67189", "content": "\u05db-60 \u05e9\u05e8\u05ea\u05d9\u05dd \u05d1\u05d9\u05e9\u05e8\u05d0\u05dc - \u05de\u05e2\u05dc 37,000 \u05e9\u05e8\u05ea\u05d9 VMware ESXi \u05d4\u05de\u05d7\u05d5\u05d1\u05e8\u05d9\u05dd \u05dc\u05d0\u05d9\u05e0\u05d8\u05e8\u05e0\u05d8 \u05e0\u05de\u05e6\u05d0\u05d5 \u05e4\u05d2\u05d9\u05e2\u05d9\u05dd \u05dc\u05d7\u05d5\u05dc\u05e9\u05ea CVE-2025-22224.\n\n\u05d4\u05d7\u05d5\u05dc\u05e9\u05d4, \u05e9\u05de\u05e0\u05d5\u05e6\u05dc \u05d1\u05e4\u05d5\u05e2\u05dc \u05e2\"\u05d9 \u05ea\u05d5\u05e7\u05e4\u05d9\u05dd \u05d1\u05e2\u05d5\u05dc\u05dd, \u05de\u05d0\u05e4\u05e9\u05e8\u05ea \u05e2\u05dd \u05d4\u05e8\u05e9\u05d0\u05d5\u05ea \u05de\u05e0\u05d4\u05dc \u05d1\u05de\u05db\u05d5\u05e0\u05d4 \u05d4\u05d5\u05d5\u05d9\u05e8\u05d8\u05d5\u05d0\u05dc\u05d9\u05ea \u05dc\u05d4\u05e8\u05d9\u05e5 \u05e7\u05d5\u05d3 \u05e2\u05dc \u05de\u05e2\u05e8\u05db\u05ea \u05d4\u05d4\u05e4\u05e2\u05dc\u05d4 \u05d4\u05de\u05d0\u05e8\u05d7\u05ea. \n\n\u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea \u05d4\u05ea\u05d2\u05dc\u05ea\u05d4 \u05e2\u05dc \u05d9\u05d3\u05d9 \u05de\u05d9\u05e7\u05e8\u05d5\u05e1\u05d5\u05e4\u05d8, \u05e9\u05d3\u05d9\u05d5\u05d5\u05d7\u05d4 \u05e2\u05dc \u05d4\u05d7\u05d5\u05dc\u05e9\u05d4 \u05db-zero-day. \n\n\u05d7\u05d1\u05e8\u05ea Broadcom \u05e4\u05e8\u05e1\u05de\u05d4 \u05e2\u05d3\u05db\u05d5\u05e0\u05d9 \u05d0\u05d1\u05d8\u05d7\u05d4 \u05dc\u05ea\u05d9\u05e7\u05d5\u05df \u05d4\u05e4\u05d2\u05d9\u05e2\u05d5\u05ea, \u05dc\u05e6\u05d3 \u05e9\u05ea\u05d9 \u05e4\u05d2\u05d9\u05e2\u05d5\u05d9\u05d5\u05ea \u05e0\u05d5\u05e1\u05e4\u05d5\u05ea (CVE-2025-22225 \u05d5-CVE-2025-22226), \u05e9\u05d2\u05dd \u05d4\u05df \u05e0\u05d5\u05e6\u05dc\u05d5 \u05d1\u05de\u05ea\u05e7\u05e4\u05d5\u05ea.\n\n\u05dc\u05d2\u05d1\u05d9 \u05d4\u05e9\u05e8\u05ea\u05d9\u05dd \u05d1\u05d9\u05e9\u05e8\u05d0\u05dc, \u05d4\u05e0\u05ea\u05d5\u05df \u05de\u05d2\u05d9\u05e2 \u05de\u05db\u05d0\u05df\n\nhttps://t.me/CyberSecurityIL/6739\n\n#\u05d7\u05d5\u05dc\u05e9\u05d5\u05ea", "creation_timestamp": "2025-03-07T07:30:58.000000Z"}, {"uuid": "a77ce347-2d7a-40c8-adbf-fbc587e26e63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "exploited", "source": "https://t.me/true_secator/6806", "content": "Broadcom \u0432\u044b\u043a\u0430\u0442\u0438\u043b\u0430\u0441\u044c \u0441\u043e \u0441\u0440\u043e\u0447\u043d\u044b\u043c \u0431\u044e\u043b\u043b\u0435\u0442\u0435\u043d\u0435\u043c \u0438 \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0436\u0434\u0430\u0435\u0442 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 \u043e \u0442\u0440\u0435\u0445 0-day VMware, \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u0431\u044b\u043b\u0438 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u044b \u0432 \u0445\u043e\u0434\u0435 \u0440\u0435\u0430\u043b\u044c\u043d\u044b\u0445 \u0430\u0442\u0430\u043a, \u043e \u0447\u0435\u043c \u0441\u043e\u043e\u0431\u0449\u0438\u043b\u0438 \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Microsoft.\n\nCVE-2025-22224, CVE-2025-22225 \u0438 CVE-2025-22226 (CVSS 9.3, 8.2 \u0438 7.1) \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 VMware ESX, \u0432\u043a\u043b\u044e\u0447\u0430\u044f VMware ESXi, vSphere, Workstation, Fusion, Cloud Foundation \u0438 Telco Cloud Platform, \u0438 \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u043e\u0431\u044a\u0435\u0434\u0438\u043d\u0435\u043d\u0438\u044f \u0432 \u0446\u0435\u043f\u043e\u0447\u043a\u0443 \u043c\u043e\u0433\u0443\u0442 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0442\u044c \u0432\u044b\u0445\u043e\u0434 \u0438\u0437 \u00ab\u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b\u00bb \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b.\n\n\u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a, \u043a\u043e\u0442\u043e\u0440\u043e\u043c\u0443 \u0443\u0434\u0430\u043b\u043e\u0441\u044c \u0441\u043a\u043e\u043c\u043f\u0440\u043e\u043c\u0435\u0442\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u0433\u043e\u0441\u0442\u0435\u0432\u0443\u044e \u041e\u0421 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0439 \u0434\u043e\u0441\u0442\u0443\u043f (\u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440 \u0438\u043b\u0438 root), \u043c\u043e\u0436\u0435\u0442 \u043f\u0435\u0440\u0435\u0439\u0442\u0438 \u0432 \u0441\u0430\u043c \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440.\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Broadcom, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u044d\u0442\u0438\u0445 \u043f\u0440\u043e\u0431\u043b\u0435\u043c \u0443\u0436\u0435 \u0430\u043a\u0442\u0438\u0432\u043d\u043e \u0440\u0435\u0430\u043b\u0438\u0437\u0443\u0435\u0442\u0441\u044f \u0432 \u0434\u0438\u043a\u043e\u0439 \u043f\u0440\u0438\u0440\u043e\u0434\u0435.\n\nCVE-2025-22224 \u043f\u0440\u0435\u0434\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 \u0441\u043e\u0431\u043e\u0439 \u043a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0443\u044e \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044f \u043a\u0443\u0447\u0438 VCMI, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u043c \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u043d\u0430 \u0446\u0435\u043b\u0435\u0432\u043e\u0439 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u0435 \u0432\u044b\u043f\u043e\u043b\u043d\u044f\u0442\u044c \u043a\u043e\u0434 \u0432 \u043a\u0430\u0447\u0435\u0441\u0442\u0432\u0435 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 VMX, \u0437\u0430\u043f\u0443\u0449\u0435\u043d\u043d\u043e\u0433\u043e \u043d\u0430 \u0445\u043e\u0441\u0442\u0435.\n\n\u0414\u0440\u0443\u0433\u0430\u044f, CVE-2025-22225 \u0432 ESXi, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0443 VMX \u0438\u043d\u0438\u0446\u0438\u0438\u0440\u043e\u0432\u0430\u0442\u044c \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u0443\u044e \u0437\u0430\u043f\u0438\u0441\u044c \u044f\u0434\u0440\u0430, \u0447\u0442\u043e \u043f\u0440\u0438\u0432\u043e\u0434\u0438\u0442 \u043a \u0432\u044b\u0445\u043e\u0434\u0443 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b.\n\n\u0418, \u043d\u0430\u043a\u043e\u043d\u0435\u0446, CVE-2025-22226 \u043e\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a \u043e\u0448\u0438\u0431\u043a\u0430 \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u0438\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 HGFS, \u043a\u043e\u0442\u043e\u0440\u0430\u044f \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0430\u043c \u0441 \u043f\u0440\u0430\u0432\u0430\u043c\u0438 \u0430\u0434\u043c\u0438\u043d\u0438\u0441\u0442\u0440\u0430\u0442\u043e\u0440\u0430 \u0432\u044b\u0437\u044b\u0432\u0430\u0442\u044c \u0443\u0442\u0435\u0447\u043a\u0443 \u043f\u0430\u043c\u044f\u0442\u0438 \u0438\u0437 \u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430 VMX.\n\nMicrosoft \u043f\u043e\u043a\u0430 \u043d\u0435 \u043e\u0441\u043e\u0431\u043e \u0440\u0430\u0441\u043f\u0440\u043e\u0441\u0442\u0440\u0430\u043d\u044f\u0435\u0442\u0441\u044f \u043f\u043e \u043f\u043e\u0432\u043e\u0434\u0443 \u0441\u0432\u043e\u0438\u0445 \u043d\u0430\u0431\u043b\u044e\u0434\u0435\u043d\u0438\u0439 \u043f\u043e \u0447\u0430\u0441\u0442\u0438 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438, \u043e\u0434\u043d\u0430\u043a\u043e, \u043a\u0430\u043a \u0438\u0437\u0432\u0435\u0441\u0442\u043d\u043e, \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u0432 VMWare \u0444\u0438\u0433\u0443\u0440\u0438\u0440\u043e\u0432\u0430\u043b\u0438 \u0432 \u00ab\u043c\u0435\u043d\u044e\u00bb \u0440\u0430\u0437\u043b\u0438\u0447\u043d\u044b\u0445 \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u043e\u0432, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0438 \u0432\u044b\u043c\u043e\u0433\u0430\u0442\u0435\u043b\u0435\u0439, \u0438 APT, \u0438 \u0434\u0440.\n\n\u0422\u0430\u043a \u0447\u0442\u043e \u0431\u0443\u0434\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c \u0438 \u0438\u043d\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u0442\u044c.", "creation_timestamp": "2025-03-05T12:00:06.000000Z"}, {"uuid": "bd9498fa-b115-4c6d-9142-0ee7e064a6ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://infosec.exchange/users/cR0w/statuses/114104429970048408", "content": "", "creation_timestamp": "2025-03-04T13:37:08.765005Z"}, {"uuid": "4b11c08b-da83-4984-ae34-deda262acdbd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/cve.skyfleet.blue/post/3ljkqfo56cy2b", "content": "", "creation_timestamp": "2025-03-04T15:04:35.959907Z"}, {"uuid": "8fa3e5d1-85cb-4182-9c81-723e31f559fb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://www.cisa.gov/news-events/ics-advisories/icsa-25-077-02", "content": "", "creation_timestamp": "2025-03-18T11:00:00.000000Z"}, {"uuid": "6a7da730-9108-44d8-8000-0ba521a211ab", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://threatintel.cc/2025/03/05/vmware-fixed-three-actively-exploited.html", "content": "", "creation_timestamp": "2025-03-05T13:37:14.000000Z"}, {"uuid": "b7809b7f-d48b-4464-93b1-3f350b4e8ee7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/pmloik.bsky.social/post/3ljnyou4vez23", "content": "", "creation_timestamp": "2025-03-05T22:10:53.434218Z"}, {"uuid": "0d51ccc9-c62d-42e3-bf41-f031bbc4577c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://feedsin.space/feed/CISAKevBot/items/3483018", "content": "", "creation_timestamp": "2025-03-04T19:14:15.211716Z"}, {"uuid": "c22f2425-57b7-4501-af0c-5e8086d61958", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3ljl6k2yeul2w", "content": "", "creation_timestamp": "2025-03-04T19:17:38.360096Z"}, {"uuid": "40645941-9a5e-4052-943b-fd56019ba572", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3ljl6k2yeuk2w", "content": "", "creation_timestamp": "2025-03-04T19:17:37.223335Z"}, {"uuid": "ed40483b-b9b1-443e-854e-a3402451d13a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/rxerium.com/post/3ljl725qlbc2p", "content": "", "creation_timestamp": "2025-03-04T19:26:35.949850Z"}, {"uuid": "499ba290-32c9-45f5-9bc7-72738c842f47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/chrisshort.net/post/3ljoc5434he2d", "content": "", "creation_timestamp": "2025-03-06T00:59:55.839684Z"}, {"uuid": "a14bd708-aff5-457d-8c62-5ce7b4f9a926", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/115865253356847916", "content": "", "creation_timestamp": "2026-01-09T12:57:41.200071Z"}, {"uuid": "62e3d8f3-5bcc-474f-996e-0535ffdea2a3", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3mbykevscbs2c", "content": "", "creation_timestamp": "2026-01-09T12:58:44.403881Z"}, {"uuid": "84e834dc-1b44-4726-afe0-31cb032c6ce5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/cb120960-09b2-467e-9f33-3f43b7f14a49", "content": "", "creation_timestamp": "2026-02-02T12:26:08.813767Z"}, {"uuid": "c4608265-d8d9-43e5-85c3-7ccd68872857", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3meeyyw6bwk2l", "content": "", "creation_timestamp": "2026-02-08T22:42:51.430392Z"}, {"uuid": "56a6f808-9288-4966-a2c2-d36d9e79042e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://vulnerability.circl.lu/bundle/f5e26632-2e27-44d4-8620-cfc829f6488a", "content": "", "creation_timestamp": "2025-03-04T15:17:20.591694Z"}, {"uuid": "f4209847-989c-4600-9dbe-1f911573a068", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/24404", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2025\n\u63cf\u8ff0\uff1a(including : CVE-2025-22226, CVE-2025-22225, CVE-2025-22224)\nURL\uff1ahttps://github.com/bronsoneaver/vme-escape\n\n\u6807\u7b7e\uff1a#CVE-2025", "creation_timestamp": "2025-03-25T12:58:16.000000Z"}, {"uuid": "90fb5a1d-4e1d-4eba-8ba7-807e4e81368a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/ics_cert/1067", "content": "\u06a9\u0645\u067e\u06cc\u0646 \u0645\u0631\u062a\u0628\u0637 \u0628\u0627 \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0633\u0647 \u06a9\u0645\u067e\u06cc\u0646 \u0631\u0648\u0632\u0635\u0641\u0631 VMware \u06a9\u0647 \u0627\u062e\u06cc\u0631\u0627\u064b \u0648\u0635\u0644\u0647 \u0634\u062f\u0647 \u0627\u0646\u062f\u060c \u0627\u06a9\u0646\u0648\u0646 \u0628\u0647 \u0639\u0646\u0648\u0627\u0646 ESXicape \u0631\u062f\u06cc\u0627\u0628\u06cc \u0645\u06cc \u0634\u0648\u062f \u0648 \u062f\u0647 \u0647\u0627 \u0647\u0632\u0627\u0631 \u0646\u0645\u0648\u0646\u0647 \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u0645\u06cc \u062f\u0647\u062f\u060c \u0647\u0645\u0627\u0646\u0637\u0648\u0631 \u06a9\u0647 \u0646\u062a\u0627\u06cc\u062c \u0627\u0633\u06a9\u0646 \u0641\u0639\u0644\u06cc \u0646\u0634\u0627\u0646 \u0645\u06cc \u062f\u0647\u062f.\n\n\u062f\u0631 4 \u0645\u0627\u0631\u0633\u060c Broadcom \u0628\u0647 \u0645\u0634\u062a\u0631\u06cc\u0627\u0646 ESXi\u060c Workstation \u0648 Fusion \u0647\u0634\u062f\u0627\u0631 \u062f\u0627\u062f \u06a9\u0647 \u0627\u0635\u0644\u0627\u062d\u0627\u062a \u0641\u0648\u0631\u06cc \u0631\u0627 \u0628\u0631\u0627\u06cc CVE-2025-22224\u060c CVE-2025-22225 \u0648 CVE-2025-22226 \u0645\u0646\u062a\u0634\u0631 \u06a9\u0646\u0646\u062f\u060c \u06a9\u0647 \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0622\u0646\u0647\u0627 \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0645\u0646\u062c\u0631 \u0628\u0647 \u0627\u062c\u0631\u0627\u06cc \u06a9\u062f \u062f\u0644\u062e\u0648\u0627\u0647\u060c \u0641\u0631\u0627\u0631\u0647\u0627\u06cc \u062d\u0627\u0641\u0638\u0647 sandbox \u0634\u0648\u062f.\u00a0\n\n\u06a9\u0634\u0641 \u0628\u0627\u06af\u200c\u0647\u0627 \u0628\u0647 \u0645\u0631\u06a9\u0632 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u062a\u0647\u062f\u06cc\u062f\u0627\u062a \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0646\u0633\u0628\u062a \u062f\u0627\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f (\u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0627\u062d\u062a\u0645\u0627\u0644\u0627\u064b \u0634\u0627\u0647\u062f \u062d\u0645\u0644\u0627\u062a \u0631\u0648\u0632\u0635\u0641\u0631 \u0646\u06cc\u0632 \u0628\u0648\u062f\u0647 \u0627\u0633\u062a)\u060c \u0627\u0645\u0627 \u0646\u0647 Broadcom \u0648 \u0646\u0647 \u0645\u0627\u06cc\u06a9\u0631\u0648\u0633\u0627\u0641\u062a \u0647\u06cc\u0686 \u0627\u0637\u0644\u0627\u0639\u0627\u062a\u06cc \u062f\u0631 \u0645\u0648\u0631\u062f \u0641\u0639\u0627\u0644\u06cc\u062a \u0645\u062e\u0631\u0628 \u0645\u0634\u0627\u0647\u062f\u0647 \u0634\u062f\u0647 \u0628\u0647 \u0627\u0634\u062a\u0631\u0627\u06a9 \u0646\u06af\u0630\u0627\u0634\u062a\u0647\u200c\u0627\u0646\u062f.\u00a0\n\n\u0645\u062d\u0642\u0642\u0627\u0646 Netlas \u06af\u0632\u0627\u0631\u0634 \u062f\u0627\u062f\u0647 \u0627\u0646\u062f \u06a9\u0647 \u0628\u06cc\u0634 \u0627\u0632 7000 \u0646\u0645\u0648\u0646\u0647 VMware ESXi \u0645\u062a\u0635\u0644 \u0628\u0647 \u0627\u06cc\u0646\u062a\u0631\u0646\u062a \u0631\u0627 \u067e\u06cc\u062f\u0627 \u06a9\u0631\u062f\u0647 \u0627\u0646\u062f \u06a9\u0647 \u0628\u0647 \u0646\u0638\u0631 \u0645\u06cc \u0631\u0633\u062f \u062f\u0631 \u0628\u0631\u0627\u0628\u0631 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0647\u0627 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 \u0647\u0633\u062a\u0646\u062f.\u00a0\n\n\u0628\u0647 \u0646\u0648\u0628\u0647 \u062e\u0648\u062f\u060c \u0628\u0646\u06cc\u0627\u062f Shadowserver \u0628\u06cc\u0634 \u0627\u0632 41000 \u0646\u0645\u0648\u0646\u0647 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631 ESXi \u0631\u0627 \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc \u06a9\u0631\u062f\u0647 \u0627\u0633\u062a \u06a9\u0647 \u0628\u06cc\u0634\u062a\u0631 \u0622\u0646\u0647\u0627 \u062f\u0631 \u0686\u06cc\u0646\u060c \u0641\u0631\u0627\u0646\u0633\u0647\u060c \u0627\u06cc\u0627\u0644\u0627\u062a \u0645\u062a\u062d\u062f\u0647 \u0622\u0645\u0631\u06cc\u06a9\u0627\u060c \u0622\u0644\u0645\u0627\u0646\u060c \u0627\u06cc\u0631\u0627\u0646\u060c \u0628\u0631\u0632\u06cc\u0644 \u0648 \u06a9\u0631\u0647 \u062c\u0646\u0648\u0628\u06cc \u0648 \u0631\u0648\u0633\u06cc\u0647 \u0642\u0631\u0627\u0631 \u062f\u0627\u0631\u0646\u062f.\n\n\u0627\u0633\u06a9\u0646\u200c\u0647\u0627\u06cc \u0622\u0646\u200c\u0647\u0627 CVE-2025-22224 \u0631\u0627 \u0647\u062f\u0641 \u0642\u0631\u0627\u0631 \u062f\u0627\u062f\u0646\u062f\u060c \u0627\u0645\u0627 \u0646\u0645\u0648\u0646\u0647\u200c\u0647\u0627\u06cc \u0634\u0646\u0627\u0633\u0627\u06cc\u06cc\u200c\u0634\u062f\u0647 \u0627\u062d\u062a\u0645\u0627\u0644\u0627\u064b \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u062f\u06cc\u06af\u0631 \u0642\u0631\u0627\u0631 \u06af\u0631\u0641\u062a\u0646\u062f\u060c \u0632\u06cc\u0631\u0627 \u0647\u0645\u06af\u06cc \u0646\u0633\u062e\u0647\u200c\u0647\u0627\u06cc \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631 \u0645\u0634\u0627\u0628\u0647\u06cc \u0631\u0627 \u062a\u062d\u062a \u062a\u0623\u062b\u06cc\u0631 \u0642\u0631\u0627\u0631 \u062f\u0627\u062f\u0646\u062f.\n\n\u062c\u0632\u0626\u06cc\u0627\u062a \u0641\u0646\u06cc \u0648 PoC \u0647\u0646\u0648\u0632 \u062f\u0631 \u062f\u0633\u062a\u0631\u0633 \u0646\u06cc\u0633\u062a\u060c \u06a9\u0647 \u0627\u062d\u062a\u0645\u0627\u0644\u0627\u064b \u062f\u0631 \u062d\u0627\u0644 \u062d\u0627\u0636\u0631 \u0634\u0631\u0648\u0639 \u0639\u0645\u0644\u06cc\u0627\u062a \u062f\u0631 \u0645\u0642\u06cc\u0627\u0633 \u0628\u0632\u0631\u06af \u0631\u0627 \u0645\u062a\u0648\u0642\u0641 \u0645\u06cc \u06a9\u0646\u062f.\u00a0\n\n\u0645\u062d\u0642\u0642 Kevin Beaumont \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0631\u0627 ESXicape \u0646\u0627\u0645\u06cc\u062f\u0647 \u0627\u0633\u062a \u0648 \u062a\u0648\u0636\u06cc\u062d \u0645\u06cc\u200c\u062f\u0647\u062f \u06a9\u0647 \u062f\u0631 \u0635\u0648\u0631\u062a \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 ESX\u060c \u0645\u0647\u0627\u062c\u0645 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0647\u0645\u0647 \u0686\u06cc\u0632 \u062f\u0631 \u0633\u0631\u0648\u0631 ESX\u060c \u0627\u0632 \u062c\u0645\u0644\u0647 \u062f\u0627\u062f\u0647\u200c\u0647\u0627\u06cc \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0648 \u0645\u0647\u0645\u200c\u062a\u0631 \u0627\u0632 \u0647\u0645\u0647\u060c \u067e\u06cc\u06a9\u0631\u0628\u0646\u062f\u06cc ESX \u0648 \u0630\u062e\u06cc\u0631\u0647\u200c\u0633\u0627\u0632\u06cc \u0646\u0635\u0628 \u0634\u062f\u0647 \u062f\u0633\u062a\u0631\u0633\u06cc \u067e\u06cc\u062f\u0627 \u06a9\u0646\u062f \u0648 \u0627\u0632 \u0622\u0646\u0647\u0627 \u0628\u0631\u0627\u06cc \u067e\u06cc\u0645\u0627\u06cc\u0634 \u062f\u0631 \u0645\u062d\u06cc\u0637 VMware \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f.\n\n\u0628\u0646\u0627\u0628\u0631\u0627\u06cc\u0646\u060c \u0627\u06af\u0631 \u0633\u0627\u0632\u0645\u0627\u0646\u06cc \u0627\u0632 vMotion \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u062f \u062a\u0627 \u0628\u0647 \u0645\u0627\u0634\u06cc\u0646\u200c\u0647\u0627\u06cc \u0645\u062c\u0627\u0632\u06cc \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0628\u0647 \u0637\u0648\u0631 \u062e\u0648\u062f\u06a9\u0627\u0631 \u0628\u06cc\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646\u200c\u0647\u0627\u06cc ESX \u062d\u0631\u06a9\u062a \u06a9\u0646\u0646\u062f\u060c \u0628\u0627\u0631\u0647\u0627 \u0631\u0627 \u0645\u062a\u0639\u0627\u062f\u0644 \u06a9\u0631\u062f\u0647 \u0648 \u062e\u062f\u0645\u0627\u062a \u0627\u0631\u0627\u0626\u0647 \u062f\u0647\u0646\u062f\u060c \u0645\u0647\u0627\u062c\u0645 \u0628\u0647 \u0641\u0636\u0627\u06cc \u0630\u062e\u06cc\u0631\u0647\u200c\u0633\u0627\u0632\u06cc \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0647\u0645 \u062f\u0631 \u0622\u0646 \u0645\u06cc\u0632\u0628\u0627\u0646 \u0648 \u0647\u0645 \u062f\u0631 \u062e\u0627\u0631\u062c \u0627\u0632 \u0622\u0646\u060c \u0628\u0631 \u0627\u0633\u0627\u0633 \u0637\u0631\u0627\u062d\u06cc\u060c \u062f\u0633\u062a\u0631\u0633\u06cc \u0645\u0633\u062a\u0642\u06cc\u0645 \u062f\u0627\u0631\u062f - \u0622\u0646\u0647\u0627 \u0627\u0633\u0627\u0633\u0627\u064b \u062f\u0631 backend \u0631\u0627\u06cc\u06af\u0627\u0646 \u0647\u0633\u062a\u0646\u062f.\n\n\u0628\u0647 \u06af\u0641\u062a\u0647 \u0627\u06cc\u0646 \u0645\u062d\u0642\u0642\u060c \u0645\u0647\u0627\u062c\u0645\u0627\u0646 \u0645\u06cc\u200c\u062a\u0648\u0627\u0646\u0646\u062f \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627 \u0628\u0631\u0627\u06cc \u062f\u0648\u0631 \u0632\u062f\u0646 \u0631\u0627\u0647\u200c\u062d\u0644\u200c\u0647\u0627\u06cc \u0627\u0645\u0646\u06cc\u062a\u06cc \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u062f\u0627\u0631\u0627\u06cc\u06cc\u200c\u0647\u0627\u06cc \u0627\u0631\u0632\u0634\u0645\u0646\u062f \u0645\u0627\u0646\u0646\u062f \u067e\u0627\u06cc\u06af\u0627\u0647\u200c\u062f\u0627\u062f\u0647\u200c\u0647\u0627\u06cc \u06a9\u0646\u062a\u0631\u0644\u200c\u06a9\u0646\u0646\u062f\u0647 \u062f\u0627\u0645\u0646\u0647 Active Directory \u0628\u062f\u0648\u0646 \u0627\u06cc\u062c\u0627\u062f \u0647\u0634\u062f\u0627\u0631 \u0633\u0648\u0621 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u06a9\u0646\u0646\u062f.\n\n\u0648 \u0627\u06cc\u0646 \u0627\u063a\u0644\u0628 \u062f\u0631 \u062d\u0648\u0627\u062f\u062b \u0628\u0627\u062c\u200c\u0627\u0641\u0632\u0627\u0631 \u0645\u0634\u0627\u0647\u062f\u0647 \u0645\u06cc\u200c\u0634\u0648\u062f\u060c \u0632\u0645\u0627\u0646\u06cc \u06a9\u0647 \u06a9\u0627\u0631\u0628\u0631\u0627\u0646 \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0627\u0632 \u06cc\u06a9 \u0633\u0631\u0648\u0631 ESX \u06cc\u0627 vCenter \u0627\u0632 \u0637\u0631\u06cc\u0642 \u0634\u0628\u06a9\u0647 \u0645\u062f\u06cc\u0631\u06cc\u062a VMware \u0628\u0627 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc\u200c\u0647\u0627\u06cc \u0627\u0635\u0644\u0627\u062d \u0646\u0634\u062f\u0647 \u0633\u0648\u0621 \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0645\u06cc\u200c\u06a9\u0646\u0646\u062f. \u0647\u0646\u06af\u0627\u0645\u06cc \u06a9\u0647 \u0647\u06a9\u0631\u0647\u0627 \u0628\u0647 ESX \u0645\u06cc \u0631\u0633\u0646\u062f\u060c \u0645\u0633\u062a\u0642\u06cc\u0645\u0627\u064b \u0628\u0647 \u0641\u0636\u0627\u06cc \u0630\u062e\u06cc\u0631\u0647 \u0633\u0627\u0632\u06cc \u062f\u0631 \u0633\u0631\u0627\u0633\u0631 \u062e\u0648\u0634\u0647 \u0646\u0641\u0648\u0630 \u0645\u06cc \u06a9\u0646\u0646\u062f.\n\n\u0628\u0627 \u0627\u06cc\u0646 \u062d\u0627\u0644\u060c \u0627\u0645\u06a9\u0627\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0645\u0633\u062a\u0642\u06cc\u0645 \u0628\u0647 \u0647\u0627\u06cc\u067e\u0631\u0648\u0627\u06cc\u0632\u0631 \u0633\u0631\u0648\u0631 ESX \u0627\u0632 \u06cc\u06a9 \u0645\u0627\u0634\u06cc\u0646 \u0645\u062c\u0627\u0632\u06cc \u0628\u0647 \u0637\u0648\u0631 \u0642\u0627\u0628\u0644 \u062a\u0648\u062c\u0647\u06cc \u062e\u0637\u0631 \u0631\u0627 \u0627\u0641\u0632\u0627\u06cc\u0634 \u0645\u06cc \u062f\u0647\u062f. \u0646\u06cc\u0627\u0632\u06cc \u0628\u0647 \u062c\u0633\u062a\u062c\u0648\u06cc \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0633\u0631\u0648\u0631 ESX \u06cc\u0627 \u0627\u062a\u0635\u0627\u0644 \u0628\u0647 \u0634\u0628\u06a9\u0647 \u0627\u06cc\u0632\u0648\u0644\u0647 \u0646\u06cc\u0633\u062a.\n\n\n\ud83c\udfed \u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\ud83d\udc6e\ud83c\udffd\u200d\u2640\ufe0f\u0647\u0631\u06af\u0648\u0646\u0647 \u0627\u0646\u062a\u0634\u0627\u0631 \u0648 \u0630\u06a9\u0631 \u0645\u0637\u0627\u0644\u0628 \u0628\u062f\u0648\u0646 \u0630\u06a9\u0631 \u062f\u0642\u06cc\u0642 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u0644\u06cc\u0646\u06a9 \u0622\u0646 \u0645\u0645\u0646\u0648\u0639 \u0627\u0633\u062a. \n\u0627\u062f\u0645\u06cc\u0646:\n\u200fhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u0648\u0627\u062a\u0633 \u0622\u067e :\nhttps://chat.whatsapp.com/FpB620AWEeSKvd8U6cFh33\n\u06af\u0631\u0648\u0647 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ICSCERT_IR", "creation_timestamp": "2025-03-31T21:52:35.000000Z"}, {"uuid": "f4314200-f59d-439d-a995-ef27f4fb7cc9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/cybersecplayground/124", "content": "\ud83d\udea8 Critical VMware ESXi Vulnerabilities Discovered! \ud83d\udea8\n\n\ud83d\udd34 CVE-2025-22224, CVE-2025-22225, CVE-2025-22226\n\u26a1\ufe0f Severity: 7.1 - 9.3 (High to Critical)\n\u26a1\ufe0f Affected Products: VMware ESXi, vCenter Server & Cloud Foundation\n\u26a1\ufe0f Vulnerabilities:\n\ud83d\udd39 Code Execution \u2013 Exploiting system processes for remote execution\n\ud83d\udd39 Sandbox Escape \u2013 Breaking out of VM isolation to access the host\n\ud83d\udd39 Memory Leak \u2013 Exposing sensitive data from unprotected memory\n\n\ud83d\udce1 Search on Netlas.io\n\n\ud83d\udca1 Manual Check:\n1\ufe0f\u20e3 Ensure your VMware ESXi is updated to the latest patch\n2\ufe0f\u20e3 Disable unnecessary services & secure management interfaces\n3\ufe0f\u20e3 Monitor network activity for unusual API calls or access attempts\n\n\ud83d\ude80 Mitigation Steps\n\u2705 Apply the latest VMware security patches immediately\n\u2705 Restrict access to ESXi management interfaces\n\u2705 Enable firewall rules to block unauthorized connections\n\u2705 Monitor logs for anomalous activity\n\n\ud83d\udce2 Stay ahead of threats! Join us \ud83d\udc49 @cybersecplayground\n\n#VMware #ESXi #CyberSecurity #EthicalHacking #Pentesting", "creation_timestamp": "2025-03-06T19:00:12.000000Z"}, {"uuid": "9d0a5b51-57ba-4e79-87ad-0d373d578e5d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "exploited", "source": "https://t.me/information_security_channel/53174", "content": "Broadcom Patches 3 VMware Zero-Days Exploited in the Wild\nhttps://www.securityweek.com/broadcom-patches-3-vmware-zero-days-exploited-in-the-wild/\n\nBroadcom patched VMware zero-days CVE-2025-22224, CVE-2025-22225 and CVE-2025-22226 after Microsoft warned it of exploitation. \nThe post Broadcom Patches 3 VMware Zero-Days Exploited in the Wild (https://www.securityweek.com/broadcom-patches-3-vmware-zero-days-exploited-in-the-wild/) appeared first on SecurityWeek (https://www.securityweek.com/).", "creation_timestamp": "2025-03-04T17:20:41.000000Z"}, {"uuid": "c48184cd-9e41-483d-be50-4ae95585f1ba", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/S_E_Reborn/5468", "content": "\u0421\u0432\u044f\u0437\u0430\u043d\u043d\u0430\u044f \u0441 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0435\u0439 \u0442\u0440\u0435\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0445 \u043d\u0430 \u0434\u043d\u044f\u0445 0-day VMware \u043a\u0430\u043c\u043f\u0430\u043d\u0438\u044f \u0442\u0435\u043f\u0435\u0440\u044c \u043e\u0442\u0441\u043b\u0435\u0436\u0438\u0432\u0430\u0435\u0442\u0441\u044f \u043a\u0430\u043a ESXicape \u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u0435\u0442 \u0434\u0435\u0441\u044f\u0442\u043a\u0438 \u0442\u044b\u0441\u044f\u0447 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432, \u043e \u0447\u0435\u043c \u0441\u0432\u0438\u0434\u0435\u0442\u0435\u043b\u044c\u0441\u0442\u0432\u0443\u044e\u0442 \u0440\u0435\u0437\u0443\u043b\u044c\u0442\u0430\u0442\u044b \u0430\u043a\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0433\u043e \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f.\n\n4 \u043c\u0430\u0440\u0442\u0430 Broadcom \u043f\u0440\u0435\u0434\u0443\u043f\u0440\u0435\u0434\u0438\u043b\u0430 \u043a\u043b\u0438\u0435\u043d\u0442\u043e\u0432 ESXi, Workstation \u0438 Fusion \u043e \u0432\u044b\u043f\u0443\u0441\u043a\u0435 \u0441\u0440\u043e\u0447\u043d\u044b\u0445 \u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u0439 \u0434\u043b\u044f CVE-2025-22224, CVE-2025-22225 \u0438 CVE-2025-22226, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043c\u043e\u0436\u0435\u0442 \u043f\u0440\u0438\u0432\u0435\u0441\u0442\u0438 \u043a \u0432\u044b\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u044e \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u043e\u0433\u043e \u043a\u043e\u0434\u0430, \u0432\u044b\u0445\u043e\u0434\u0443 \u0438\u0437 \u043f\u0435\u0441\u043e\u0447\u043d\u0438\u0446\u044b \u0438 \u0443\u0442\u0435\u0447\u043a\u0430\u043c \u043f\u0430\u043c\u044f\u0442\u0438.\u00a0\n\n\u041e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043e\u043a \u043f\u0440\u0438\u043f\u0438\u0441\u044b\u0432\u0430\u0435\u0442\u0441\u044f Microsoft Threat Intelligence Center (\u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, Microsoft \u0442\u0430\u043a\u0436\u0435 \u0432\u0438\u0434\u0435\u043b\u0430 \u0430\u0442\u0430\u043a\u0438 \u0441 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435\u043c 0-day), \u043d\u043e \u043d\u0438 Broadcom, \u043d\u0438 Microsoft \u043d\u0435 \u043f\u043e\u0434\u0435\u043b\u0438\u043b\u0438\u0441\u044c \u043a\u0430\u043a\u043e\u0439-\u043b\u0438\u0431\u043e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0435\u0439 \u043e \u0437\u0430\u043c\u0435\u0447\u0435\u043d\u043d\u043e\u0439 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0439 \u0430\u043a\u0442\u0438\u0432\u043d\u043e\u0441\u0442\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u0438 Netlas \u0441\u043e\u043e\u0431\u0449\u0430\u044e\u0442 \u043e\u0431 \u043e\u0431\u043d\u0430\u0440\u0443\u0436\u0435\u043d\u0438\u0438 \u0431\u043e\u043b\u0435\u0435 7000 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 VMware ESXi, \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0435\u043d\u043d\u044b\u0445 \u043a \u0418\u043d\u0442\u0435\u0440\u043d\u0435\u0442\u0443, \u043a\u043e\u0442\u043e\u0440\u044b\u0435, \u043f\u043e-\u0432\u0438\u0434\u0438\u043c\u043e\u043c\u0443, \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c.\u00a0\n\n\u0412 \u0441\u0432\u043e\u044e \u043e\u0447\u0435\u0440\u0435\u0434\u044c, Shadowserver Foundation \u0432\u044b\u044f\u0432\u0438\u043b\u0430 \u0431\u043e\u043b\u0435\u0435 41 000 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u043e\u0432 ESXi, \u0431\u043e\u043b\u044c\u0448\u0438\u043d\u0441\u0442\u0432\u043e \u0438\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0445 \u043d\u0430\u0445\u043e\u0434\u044f\u0442\u0441\u044f \u0432 \u041a\u0438\u0442\u0430\u0435, \u0424\u0440\u0430\u043d\u0446\u0438\u0438, \u0421\u0428\u0410, \u0413\u0435\u0440\u043c\u0430\u043d\u0438\u0438, \u0418\u0440\u0430\u043d\u0435, \u0411\u0440\u0430\u0437\u0438\u043b\u0438\u0438 \u0438 \u042e\u0436\u043d\u043e\u0439 \u041a\u043e\u0440\u0435\u0435 (\u0432 \u0420\u0424 - \u0431\u043e\u043b\u0435\u0435 700).\n\n\u0418\u0445 \u0441\u043a\u0430\u043d\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u044f \u0431\u044b\u043b\u0438 \u043d\u0430\u0446\u0435\u043b\u0435\u043d\u044b \u043d\u0430 CVE-2025-22224, \u043d\u043e \u0434\u0435\u0442\u0435\u043a\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0435 \u044d\u043a\u0437\u0435\u043c\u043f\u043b\u044f\u0440\u044b, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u0437\u0430\u0442\u0440\u043e\u043d\u0443\u0442\u044b \u0438 \u0434\u0440\u0443\u0433\u0438\u043c\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044f\u043c\u0438, \u043f\u043e\u0441\u043a\u043e\u043b\u044c\u043a\u0443 \u0432\u0441\u0435 \u043e\u043d\u0438 \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0442 \u043e\u0434\u043d\u0438 \u0438 \u0442\u0435 \u0436\u0435 \u0432\u0435\u0440\u0441\u0438\u0438 \u041f\u041e.\n\n\u0422\u0435\u0445\u043d\u0438\u0447\u0435\u0441\u043a\u0438\u0435 \u043f\u043e\u0434\u0440\u043e\u0431\u043d\u043e\u0441\u0442\u0438 \u0438 PoC \u043f\u043e\u043a\u0430 \u043d\u0435\u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b, \u0447\u0442\u043e, \u0432\u0435\u0440\u043e\u044f\u0442\u043d\u043e, \u043d\u0430 \u0442\u0435\u043a\u0443\u0449\u0438\u0439 \u043c\u043e\u043c\u0435\u043d\u0442 \u0441\u0434\u0435\u0440\u0436\u0438\u0432\u0430\u0435\u0442 \u043d\u0430\u0447\u0430\u043b\u043e \u0448\u0438\u0440\u043e\u043a\u043e\u043c\u0430\u0441\u0448\u0442\u0430\u0431\u043d\u043e\u0439 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438.\u00a0\n\n\u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044c \u041a\u0435\u0432\u0438\u043d \u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u043a\u0440\u0435\u0441\u0442\u0438\u043b \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438\u00a0\u043a\u0430\u043a ESXicape, \u043f\u043e\u044f\u0441\u043d\u044f\u044f, \u0447\u0442\u043e \u0432 \u0441\u043b\u0443\u0447\u0430\u0435 \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a ESX, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a\u043e \u0432\u0441\u0435\u043c\u0443 \u043d\u0430 \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX, \u0432\u043a\u043b\u044e\u0447\u0430\u044f \u0434\u0430\u043d\u043d\u044b\u0435 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0438, \u0447\u0442\u043e \u043e\u0441\u043e\u0431\u0435\u043d\u043d\u043e \u0432\u0430\u0436\u043d\u043e, \u043a\u043e\u043d\u0444\u0438\u0433\u0443\u0440\u0430\u0446\u0438\u044e ESX \u0438 \u0441\u043c\u043e\u043d\u0442\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0435 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435, \u0430 \u0432 \u043f\u043e\u043c\u043e\u0449\u044c\u044e \u043d\u0438\u0445 - \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043f\u043e \u0441\u0440\u0435\u0434\u0435 VMware.\n\n\u0422\u0430\u043a, \u0435\u0441\u043b\u0438 \u043e\u0440\u0433\u0430\u043d\u0438\u0437\u0430\u0446\u0438\u0438 \u0432 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442\u0441\u044f vMotion, \u0447\u0442\u043e\u0431\u044b \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u044b\u0435 \u043c\u0430\u0448\u0438\u043d\u044b \u043c\u043e\u0433\u043b\u0438 \u0430\u0432\u0442\u043e\u043c\u0430\u0442\u0438\u0447\u0435\u0441\u043a\u0438 \u043f\u0435\u0440\u0435\u043c\u0435\u0449\u0430\u0442\u044c\u0441\u044f \u043c\u0435\u0436\u0434\u0443 \u0445\u043e\u0441\u0442\u0430\u043c\u0438 ESX, \u0431\u0430\u043b\u0430\u043d\u0441\u0438\u0440\u0443\u044f \u043d\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0438 \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0438\u0432\u0430\u044f \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0435, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043f\u043e\u043b\u0443\u0447\u0430\u0435\u0442 \u043f\u0440\u044f\u043c\u043e\u0439 \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0443 \u0412\u041c \u043a\u0430\u043a \u043d\u0430\u00a0\u044d\u0442\u043e\u043c \u0445\u043e\u0441\u0442\u0435, \u0442\u0430\u043a \u0438 \u0437\u0430 \u0435\u0433\u043e \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438\u00a0\u043f\u043e \u0437\u0430\u043c\u044b\u0441\u043b\u0443 \u2014 \u043e\u043d\u0438, \u043f\u043e \u0441\u0443\u0442\u0438, \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u044b \u043d\u0430 \u0431\u044d\u043a\u044d\u043d\u0434\u0435.\n\n\u041f\u043e \u0441\u043b\u043e\u0432\u0430\u043c \u0438\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u0442\u0435\u043b\u044f, \u0437\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a\u0438 \u043c\u043e\u0433\u0443\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438, \u0447\u0442\u043e\u0431\u044b \u043e\u0431\u043e\u0439\u0442\u0438 \u0440\u0435\u0448\u0435\u043d\u0438\u044f \u0431\u0435\u0437\u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0438 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u0446\u0435\u043d\u043d\u044b\u043c \u0430\u043a\u0442\u0438\u0432\u0430\u043c, \u0442\u0430\u043a\u0438\u043c \u043a\u0430\u043a \u0431\u0430\u0437\u044b \u0434\u0430\u043d\u043d\u044b\u0445 \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440\u043e\u0432 \u0434\u043e\u043c\u0435\u043d\u0430 Active Directory, \u043d\u0435 \u0432\u044b\u0437\u044b\u0432\u0430\u044f \u043e\u043f\u043e\u0432\u0435\u0449\u0435\u043d\u0438\u0439.\n\n\u0410 \u044d\u0442\u043e \u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u043e \u0447\u0430\u0441\u0442\u043e \u043d\u0430\u0431\u043b\u044e\u0434\u0430\u0435\u0442\u0441\u044f \u0432 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u0445 \u0441 ransomware, \u043a\u043e\u0433\u0434\u0430 \u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u0435\u043b\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044e\u0442 \u0441\u0435\u0440\u0432\u0435\u0440 ESX \u0438\u043b\u0438 vCenter \u0447\u0435\u0440\u0435\u0437 \u0441\u0435\u0442\u044c \u0443\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u0438\u044f VMware, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u043d\u0435\u0438\u0441\u043f\u0440\u0430\u0432\u043b\u0435\u043d\u043d\u044b\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438. \u041a\u0430\u043a \u0442\u043e\u043b\u044c\u043a\u043e \u0445\u0430\u043a\u0435\u0440\u044b \u0434\u043e\u0441\u0442\u0438\u0433\u0430\u044e\u0442 ESX, \u043e\u043d\u0438 \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u043f\u0440\u043e\u043d\u0438\u043a\u0430\u044e\u0442 \u0432 \u0445\u0440\u0430\u043d\u0438\u043b\u0438\u0449\u0435 \u043f\u043e \u0432\u0441\u0435\u043c\u0443 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0443.\n\n\u041f\u0440\u0438 \u044d\u0442\u043e\u043c \u0432\u043e\u0437\u043c\u043e\u0436\u043d\u043e\u0441\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f\u0430 \u043a \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u0443 \u0441\u0435\u0440\u0432\u0435\u0440\u0430 ESX \u043d\u0430\u043f\u0440\u044f\u043c\u0443\u044e \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b \u0437\u043d\u0430\u0447\u0438\u0442\u0435\u043b\u044c\u043d\u043e \u043f\u043e\u0432\u044b\u0448\u0430\u0435\u0442 \u0440\u0438\u0441\u043a. \u041d\u0435 \u043d\u0443\u0436\u043d\u043e \u0438\u0441\u043a\u0430\u0442\u044c \u0441\u0432\u0435\u0434\u0435\u043d\u0438\u044f \u043e \u0441\u0435\u0440\u0432\u0435\u0440\u0435 ESX \u0438\u043b\u0438 \u043f\u043e\u0434\u043a\u043b\u044e\u0447\u0430\u0442\u044c\u0441\u044f \u043a \u0438\u0437\u043e\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u043e\u0439 \u0441\u0435\u0442\u0438.\n\n\u0411\u043e\u043c\u043e\u043d\u0442 \u043e\u0442\u043c\u0435\u0442\u0438\u043b, \u0447\u0442\u043e \u043d\u0435\u0434\u0430\u0432\u043d\u043e \u0432 \u043a\u0438\u0431\u0435\u0440\u043f\u043e\u0434\u043f\u043e\u043b\u044c\u0435 \u0431\u044b\u043b \u0437\u0430\u043c\u0435\u0447\u0435\u043d \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442 \u0434\u043b\u044f \u043f\u043e\u0431\u0435\u0433\u0430 \u0438\u0437 \u0432\u0438\u0440\u0442\u0443\u0430\u043b\u044c\u043d\u043e\u0439 \u043c\u0430\u0448\u0438\u043d\u044b ESXi \u043f\u043e \u0446\u0435\u043d\u0435 150 000 \u0434\u043e\u043b\u043b., \u043d\u043e \u043d\u0435\u044f\u0441\u043d\u043e, \u0440\u0430\u0431\u043e\u0447\u0438\u0439 \u043b\u0438 \u043e\u043d \u0438 \u0441\u0432\u044f\u0437\u0430\u043d \u043b\u0438 \u0441 \u0430\u0442\u0430\u043a\u0430\u043c\u0438 0-day, \u0440\u0430\u0441\u043a\u0440\u044b\u0442\u044b\u043c\u0438 \u043d\u0430 \u044d\u0442\u043e\u0439 \u043d\u0435\u0434\u0435\u043b\u0435.\n\n\u0411\u0443\u0434\u0435\u043c \u0441\u043b\u0435\u0434\u0438\u0442\u044c.", "creation_timestamp": "2025-03-06T16:52:24.000000Z"}, {"uuid": "2cfdeb7b-de9c-4f60-8617-975b4f716a61", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2025-22226", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3ljm6jqw7w224", "content": "", "creation_timestamp": "2025-03-05T04:50:05.781220Z"}, {"uuid": "b2cdaf8d-bbb4-453d-a6f4-2ddeff7203b7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/redteamnews.bsky.social/post/3ll5gjrlxiw2j", "content": "", "creation_timestamp": "2025-03-24T18:53:42.977933Z"}, {"uuid": "56000605-e109-4979-b4fe-c5eb4642c112", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljt46pl7rc2q", "content": "", "creation_timestamp": "2025-03-07T22:56:51.259628Z"}, {"uuid": "d37f73a0-cae4-4cb3-890c-47f1e66ce402", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/bluedevil.bsky.social/post/3ljyrdfcork27", "content": "", "creation_timestamp": "2025-03-10T04:58:30.431612Z"}, {"uuid": "51205783-9ef6-43c9-8d4a-fad91f288a64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://infosec.exchange/users/harrysintonen/statuses/114104285789301930", "content": "", "creation_timestamp": "2025-03-04T13:00:28.673811Z"}, {"uuid": "ace50aef-aff6-49e2-b01e-adc38f1b4d32", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/leekthehack.bsky.social/post/3ljna67zsos2p", "content": "", "creation_timestamp": "2025-03-05T14:52:07.881331Z"}, {"uuid": "e0efbde1-a3e4-4fb1-9da2-757bc388d6e6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://cyberplace.social/users/GossiTheDog/statuses/114104596316369139", "content": "", "creation_timestamp": "2025-03-04T14:19:52.138794Z"}, {"uuid": "39bb3a8c-479c-49aa-a2a1-9576bfac80d4", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/peterrobards.bsky.social/post/3ljnaxwwgak2e", "content": "", "creation_timestamp": "2025-03-05T15:06:28.950253Z"}, {"uuid": "1de6daa6-60cb-4d0e-a34d-bfbac0cf5aa0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/GossiTheDog.cyberplace.social.ap.brid.gy/post/3ljknvmh5o5a2", "content": "", "creation_timestamp": "2025-03-04T14:23:36.775313Z"}, {"uuid": "76b3626a-8bb9-424a-8b6c-0997dbf2e7df", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/cyb3rint3l.bsky.social/post/3ljkpknvnf22w", "content": "", "creation_timestamp": "2025-03-04T14:49:31.340518Z"}, {"uuid": "3d9eb7ad-9548-4c79-97ff-737b60e030e7", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/hackingne.ws/post/3ljkqdad2nr2q", "content": "", "creation_timestamp": "2025-03-04T15:03:14.440543Z"}, {"uuid": "2d34e387-4ebd-4c8e-8b65-8aeac720b1ae", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/beikokucyber.bsky.social/post/3ljnutmchya2v", "content": "", "creation_timestamp": "2025-03-05T21:01:59.343161Z"}, {"uuid": "feb2514d-eeda-4d2f-8949-91795f63252c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-03-04T18:10:04.000000Z"}, {"uuid": "74542216-118d-40c5-998d-ed8a76a645b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ljr4oqiqzl2x", "content": "", "creation_timestamp": "2025-03-07T04:00:24.911198Z"}, {"uuid": "27c8b579-fb0b-4594-b46e-4b70e0c40005", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/aakl.bsky.social/post/3ljl7dasoy32w", "content": "", "creation_timestamp": "2025-03-04T19:31:41.799520Z"}, {"uuid": "a50fbaf5-e373-45c1-aba2-44f3d4e7516d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/xc0py.bsky.social/post/3ljr7u4xvq22g", "content": "", "creation_timestamp": "2025-03-07T04:57:07.515587Z"}, {"uuid": "8b0384af-e35b-480c-a1eb-2f1d16f92551", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/technofeed.bsky.social/post/3ljoejhdpzf2n", "content": "", "creation_timestamp": "2025-03-06T01:42:37.914952Z"}, {"uuid": "b9eec22f-c6c7-4596-ab01-c76eeb42db03", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/technofeed.bsky.social/post/3ljoejmbsmf2n", "content": "", "creation_timestamp": "2025-03-06T01:42:42.200616Z"}, {"uuid": "165339ab-948c-4b1c-8359-d675c1e68355", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123", "content": "", "creation_timestamp": "2025-03-06T04:40:22.000000Z"}, {"uuid": "930e5410-8212-416d-8059-dc414bc17e1c", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljw3k7uke22r", "content": "", "creation_timestamp": "2025-03-09T03:23:18.094540Z"}, {"uuid": "6dd07660-4f96-486c-a081-2bea70398a52", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/mawg0ud.bsky.social/post/3ljowefjpj224", "content": "", "creation_timestamp": "2025-03-06T07:01:57.332062Z"}, {"uuid": "b6f7262f-8b64-45ba-a4a3-02f0808c8347", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/areenzor.bsky.social/post/3ljox5fqlgk25", "content": "", "creation_timestamp": "2025-03-06T07:15:55.499597Z"}, {"uuid": "2c52a2dc-e4fd-43c6-b454-39b6998cb731", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/calebpr.bsky.social/post/3ljlqoe5ols2d", "content": "", "creation_timestamp": "2025-03-05T00:42:07.606781Z"}, {"uuid": "8d40d1e2-f073-4326-906c-1a48f2c9d266", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://mstdn.ca/users/rfwaveio/statuses/114107674753631287", "content": "", "creation_timestamp": "2025-03-05T03:22:30.005567Z"}, {"uuid": "86b59fd2-a392-441b-82ca-d21a3a32ef5e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/nihonmatsu.bsky.social/post/3ljm3mci3ys2i", "content": "", "creation_timestamp": "2025-03-05T03:57:54.005347Z"}, {"uuid": "367327df-343d-4973-971d-8c37d6dc2a23", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/samilaiho.com/post/3ljm5okezas2j", "content": "", "creation_timestamp": "2025-03-05T04:34:52.555249Z"}, {"uuid": "73e0c147-2920-4c23-80ee-e0f607c77ae0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lpw5qmvtxs2l", "content": "", "creation_timestamp": "2025-05-24T12:33:53.018053Z"}, {"uuid": "7b1fe87c-09fe-4f4a-a2c4-f8f9f4443c69", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/bolhasec.com/post/3lpoiryx2ws22", "content": "", "creation_timestamp": "2025-05-21T11:30:09.247325Z"}, {"uuid": "52730c53-b7e9-4836-a00b-ac930b8027e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://infosec.exchange/users/jbhall56/statuses/116018291891287699", "content": "", "creation_timestamp": "2026-02-05T13:37:24.034004Z"}, {"uuid": "9c7edd37-5ecb-47f1-8fa8-c89eb5ac08d2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/jbhall56.bsky.social/post/3me4j56tu5s2r", "content": "", "creation_timestamp": "2026-02-05T13:37:34.311078Z"}, {"uuid": "4d918623-6675-4910-9913-557cccfdccd9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://www.govcert.gov.hk/en/alerts_detail.php?id=1491", "content": "", "creation_timestamp": "2025-03-06T04:00:00.000000Z"}, {"uuid": "b5dc0826-83fa-452e-99ab-f901201e20f0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/cb120960-09b2-467e-9f33-3f43b7f14a49", "content": "", "creation_timestamp": "2026-02-02T12:26:08.813767Z"}, {"uuid": "aacd7774-4f29-4a20-979e-43328ae20285", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/cvedetector/19495", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2025-22226 - VMware HGFS Out-of-Bounds Read Information Disclosure\", \n  \"Content\": \"CVE ID : CVE-2025-22226 \nPublished : March 4, 2025, 12:15 p.m. | 27\u00a0minutes ago \nDescription : VMware ESXi, Workstation, and Fusion contain\u00a0an information disclosure vulnerability due to an out-of-bounds read in HGFS.\u00a0A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process. \nSeverity: 7.1 | HIGH \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"04 Mar 2025\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2025-03-04T14:10:24.000000Z"}, {"uuid": "79d4e281-e369-43ce-8b91-ea57a0895ddd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "exploited", "source": "https://t.me/cIub1337/49", "content": "Multiple critical vulnerabilities have been identified in VMware products, with evidence of active exploitation by ransomware groups. \n\nOrganizations using these products should urgently apply the recommended patches to mitigate potential risks.  \n\n 1. CISA Adds Four Known Exploited Vulnerabilities to Catalog: On March 4, 2025, the Cybersecurity and Infrastructure Security Agency (CISA) updated its Known Exploited Vulnerabilities Catalog to include four new vulnerabilities: \n \u2022 CVE-2024-50302: A Linux Kernel Use of Uninitialized Resource Vulnerability. \n \u2022 CVE-2025-22225: A VMware ESXi Arbitrary Write Vulnerability. \n \u2022 CVE-2025-22224: A VMware ESXi and Workstation TOCTOU Race Condition Vulnerability. \n \u2022 CVE-2025-22226: A VMware ESXi, Workstation, and Fusion Information Disclosure Vulnerability. \nCISA emphasizes that these vulnerabilities are actively exploited and pose significant risks, urging organizations to prioritize timely remediation as part of their vulnerability management practices.\n 2. Kevin Beaumont\u2019s Cyberplace Post: Cybersecurity expert Kevin Beaumont highlighted that three different zero-day vulnerabilities in VMware products are currently under active exploitation. He noted that these vulnerabilities are being leveraged by threat actors, underscoring the critical need for immediate patching and mitigation efforts.\n 3. Broadcom Security Advisory (VMSA-2025-0004): On March 4, 2025, Broadcom released a security advisory addressing multiple vulnerabilities in VMware products:\n \u2022 CVE-2025-22224: A critical heap-overflow vulnerability in VMware ESXi and Workstation that could allow a malicious actor with local administrative privileges on a virtual machine to execute code as the VMX process on the host. \n \u2022 CVE-2025-22225: An arbitrary write vulnerability in VMware ESXi, enabling a malicious actor with VMX process privileges to perform arbitrary kernel writes, potentially leading to a sandbox escape. \n \u2022 CVE-2025-22226: An information disclosure vulnerability in VMware ESXi, Workstation, and Fusion due to an out-of-bounds read in HGFS, which could allow an attacker with administrative privileges on a virtual machine to leak memory from the VMX process. \nBroadcom has released patches to address these vulnerabilities and recommends that affected users apply them promptly.\n\n#ransomware #vmware\n\nTelegram   \u2709\ufe0f @cIub1337\nX (Twitter) \ud83d\udd4a @club31337", "creation_timestamp": "2025-03-10T18:48:29.000000Z"}, {"uuid": "f98841f0-a463-4fcd-a947-8fa46ccff8bc", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/shiojiri.com/post/3ljmdwbuqx224", "content": "", "creation_timestamp": "2025-03-05T06:26:34.892265Z"}, {"uuid": "66119d61-9332-46f5-a24a-a31bf6dc63e5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/yokoi.bsky.social/post/3ljmfbbzhqs23", "content": "", "creation_timestamp": "2025-03-05T06:50:39.403735Z"}, {"uuid": "3925c86d-aeec-4efc-bc41-60f5203fcb47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://poliverso.org/objects/0477a01e-96864c15-11dd9a03e934f5c6", "content": "", "creation_timestamp": "2025-03-05T06:55:17.459813Z"}, {"uuid": "5dcc2438-dd1f-484e-8ed4-8dc36d60c8f9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3lkes3o3u2k2o", "content": "", "creation_timestamp": "2025-03-14T23:44:05.121126Z"}, {"uuid": "cd8164e2-2a2a-4f78-95a0-60e6214e4f5b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/newslit.co/post/3ljpvfse5d225", "content": "", "creation_timestamp": "2025-03-06T16:17:31.524138Z"}, {"uuid": "9c097288-c52e-449c-a8f8-582eb7f377f5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/leekthehack.bsky.social/post/3ljna66d5o22p", "content": "", "creation_timestamp": "2025-03-05T14:52:07.251021Z"}, {"uuid": "69d708b8-2e3d-4ec0-8a5e-d137e2e49e83", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/securityrss.bsky.social/post/3ljkuahmtdc23", "content": "", "creation_timestamp": "2025-03-04T16:13:16.883936Z"}, {"uuid": "323c2776-d02e-4e2d-a5c3-f3d28b225935", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljqe6hjm4s2s", "content": "", "creation_timestamp": "2025-03-06T20:41:53.862992Z"}, {"uuid": "c2f0ecf6-11be-4e5e-85ae-48933d38cfec", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/infosec.skyfleet.blue/post/3ljkvkt5ynd2g", "content": "", "creation_timestamp": "2025-03-04T16:36:57.646376Z"}, {"uuid": "fa6c8d9f-b50f-4425-ae0c-87986b6cd703", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://advisories.ncsc.nl/advisory?id=NCSC-2025-0073", "content": "", "creation_timestamp": "2025-03-04T13:11:56.000000Z"}, {"uuid": "4887c206-ee22-4af9-940e-273889bc6e3a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljm2ars5nk22", "content": "", "creation_timestamp": "2025-03-05T03:33:33.497891Z"}, {"uuid": "937c0244-2c39-4845-bc96-37da5609142f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3ljm2deabl222", "content": "", "creation_timestamp": "2025-03-05T03:34:57.192780Z"}, {"uuid": "e36e6e4d-8b58-40bb-9b7e-333f1db1dcff", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://www.cert.at/de/warnungen/2025/3/kritische-sicherheitslucken-in-vmware-esxi-workstation-und-fusion-aktiv-ausgenutzt-updates-verfugbar", "content": "", "creation_timestamp": "2025-03-04T16:56:13.000000Z"}, {"uuid": "59e4b302-3aa3-4dc2-a5b5-b781c32c84bd", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "MISP/2bceffac-02c3-4c54-a709-6e253b38ec76", "content": "", "creation_timestamp": "2025-09-09T20:56:43.000000Z"}, {"uuid": "20b17465-36be-456f-8a93-9b88235c0f20", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://gist.github.com/Darkcrai86/9d382218b72e067591282202b03e7d55", "content": "", "creation_timestamp": "2026-01-08T08:10:26.000000Z"}, {"uuid": "8f0683ed-37e8-4c35-a938-f7addfb3ad98", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mcogihykys2k", "content": "", "creation_timestamp": "2026-01-18T05:47:48.418577Z"}, {"uuid": "7ae2aa00-e1c8-46f0-b89f-0090e2133d31", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/DarkWebInformer_CVEAlerts/6365", "content": "\ud83d\udd17 DarkWebInformer.com - Cyber Threat Intelligence\n\ud83d\udccc CVE ID: CVE-2025-22226\n\ud83d\udd25 CVSS Score: 7.1 (cvssV3_1, Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N)\n\ud83d\udd39 Description: VMware ESXi, Workstation, and Fusion contain\u00a0an information disclosure vulnerability due to an out-of-bounds read in HGFS.\u00a0A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process.\n\ud83d\udccf Published: 2025-03-04T11:56:57.541Z\n\ud83d\udccf Modified: 2025-03-04T11:56:57.541Z\n\ud83d\udd17 References:\n1. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390", "creation_timestamp": "2025-03-04T12:31:24.000000Z"}, {"uuid": "27fb8fa2-09ae-4538-946a-7900afdbd07d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2025-22226", "type": "seen", "source": "https://t.me/itsec_news/5777", "content": "\u200b\u26a1\ufe0f11 \u0446\u0438\u0444\u0440\u043e\u0432\u044b\u0445 \u0434\u044b\u0440, \u0447\u0435\u0440\u0435\u0437 \u043a\u043e\u0442\u043e\u0440\u044b\u0435 \u043c\u043e\u0436\u043d\u043e \u0443\u043d\u0435\u0441\u0442\u0438 \u0432\u0441\u0451: \u043e\u0442 \u0434\u0430\u043d\u043d\u044b\u0445 \u0434\u043e \u043d\u0430\u0441\u0442\u0440\u043e\u0435\u043d\u0438\u044f\n\n\ud83d\udcac \u042d\u043a\u0441\u043f\u0435\u0440\u0442\u044b Positive Technologies \u043e\u0442\u043d\u0435\u0441\u043b\u0438 \u043a \u0447\u0438\u0441\u043b\u0443 \u0442\u0440\u0435\u043d\u0434\u043e\u0432\u044b\u0445 \u0435\u0449\u0451 \u043e\u0434\u0438\u043d\u043d\u0430\u0434\u0446\u0430\u0442\u044c \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0435\u0439, \u0437\u0430\u0442\u0440\u0430\u0433\u0438\u0432\u0430\u044e\u0449\u0438\u0445 \u043a\u043b\u044e\u0447\u0435\u0432\u044b\u0435 \u044d\u043b\u0435\u043c\u0435\u043d\u0442\u044b \u0446\u0438\u0444\u0440\u043e\u0432\u043e\u0439 \u0438\u043d\u0444\u0440\u0430\u0441\u0442\u0440\u0443\u043a\u0442\u0443\u0440\u044b. \u0412 \u0441\u043f\u0438\u0441\u043e\u043a \u0432\u043e\u0448\u043b\u0438 \u043f\u0440\u043e\u0434\u0443\u043a\u0442\u044b Microsoft, \u0433\u0438\u043f\u0435\u0440\u0432\u0438\u0437\u043e\u0440\u044b VMware, \u043a\u043e\u043d\u0442\u0440\u043e\u043b\u043b\u0435\u0440 Kubernetes \u0438 \u0432\u0435\u0431-\u0441\u0435\u0440\u0432\u0435\u0440 Apache Tomcat.\n\nMicrosoft\n\nCVE-2024-30085 \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 \u0434\u0440\u0430\u0439\u0432\u0435\u0440\u0435 Windows Cloud Files Mini Filter (CVSS 7.8) \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0430\u0442\u0430\u043a\u0443\u044e\u0449\u0435\u043c\u0443 \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c SYSTEM-\u0434\u043e\u0441\u0442\u0443\u043f. \u041e\u0448\u0438\u0431\u043a\u0430 \u0432\u044b\u0437\u0432\u0430\u043d\u0430 \u043f\u0435\u0440\u0435\u043f\u043e\u043b\u043d\u0435\u043d\u0438\u0435\u043c \u0431\u0443\u0444\u0435\u0440\u0430 \u043a\u0443\u0447\u0438 \u043f\u0440\u0438 \u043e\u0431\u0440\u0430\u0431\u043e\u0442\u043a\u0435 \u0431\u0438\u0442\u043e\u0432\u044b\u0445 \u043a\u0430\u0440\u0442. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u0441\u0435\u0433\u043c\u0435\u043d\u0442\u0430\u0446\u0438\u044f \u0441\u0435\u0442\u0438, PoLP, \u0443\u0441\u0438\u043b\u0435\u043d\u043d\u044b\u0439 \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433.\n\nCVE-2025-24983 \u2014 \u043e\u0448\u0438\u0431\u043a\u0430 \u0432 \u043f\u043e\u0434\u0441\u0438\u0441\u0442\u0435\u043c\u0435 \u044f\u0434\u0440\u0430 Win32 (CVSS 7.0) \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043f\u043e\u0432\u044b\u0441\u0438\u0442\u044c \u043f\u0440\u0438\u0432\u0438\u043b\u0435\u0433\u0438\u0438 \u0447\u0435\u0440\u0435\u0437 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u043e\u0437\u0434\u0430\u043d\u043d\u0443\u044e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u0443, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0433\u043e\u043d\u043a\u0443. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u043e\u0433\u0440\u0430\u043d\u0438\u0447\u0435\u043d\u0438\u0435 \u043b\u043e\u043a\u0430\u043b\u044c\u043d\u044b\u0445 \u043f\u0440\u0430\u0432, \u043c\u043e\u043d\u0438\u0442\u043e\u0440\u0438\u043d\u0433 \u043f\u043e\u043f\u044b\u0442\u043e\u043a \u044d\u0441\u043a\u0430\u043b\u0430\u0446\u0438\u0438.\n\nCVE-2025-26633 \u2014 \u043e\u0431\u0445\u043e\u0434 \u0437\u0430\u0449\u0438\u0442\u044b \u0432 Microsoft Management Console (CVSS 7.0). \u0417\u043b\u043e\u0443\u043c\u044b\u0448\u043b\u0435\u043d\u043d\u0438\u043a \u043c\u043e\u0436\u0435\u0442 \u0432\u043d\u0435\u0434\u0440\u0438\u0442\u044c \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 MSC-\u0444\u0430\u0439\u043b \u0447\u0435\u0440\u0435\u0437 \u0444\u0438\u0448\u0438\u043d\u0433. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u0431\u043b\u043e\u043a\u0438\u0440\u043e\u0432\u043a\u0430 MSC \u0438 VHD-\u0444\u0430\u0439\u043b\u043e\u0432 \u043d\u0430 \u043f\u0440\u043e\u043a\u0441\u0438 \u0438 \u043c\u0435\u0436\u0441\u0435\u0442\u0435\u0432\u044b\u0445 \u044d\u043a\u0440\u0430\u043d\u0430\u0445.\n\nCVE-2025-24071 \u2014 \u0441\u043f\u0443\u0444\u0438\u043d\u0433 \u0432 Windows File Explorer (CVSS 7.5). \u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u0442\u044c NTLM-\u0445\u0435\u0448\u0438, \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0438\u0440\u0443\u044f LIBRARY-MS-\u0444\u0430\u0439\u043b\u044b. \u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u043f\u043e\u0434\u043f\u0438\u0441\u044b\u0432\u0430\u043d\u0438\u0435 SMB, \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 NTLM.\n\nCVE-2025-24993 \u2014 RCE \u0432 \u0444\u0430\u0439\u043b\u043e\u0432\u043e\u0439 \u0441\u0438\u0441\u0442\u0435\u043c\u0435 NTFS (CVSS 7.8). \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0447\u0435\u0440\u0435\u0437 \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u044b\u0439 VHD-\u0434\u0438\u0441\u043a.\n\nCVE-2025-24985 \u2014 \u0430\u043d\u0430\u043b\u043e\u0433\u0438\u0447\u043d\u0430\u044f RCE-\u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 Fast FAT (CVSS 7.8), \u0442\u0430\u043a\u0436\u0435 \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u0435\u0442 VHD \u0434\u043b\u044f \u0432\u043d\u0435\u0434\u0440\u0435\u043d\u0438\u044f \u0432\u0440\u0435\u0434\u043e\u043d\u043e\u0441\u043d\u043e\u0433\u043e \u041f\u041e.\n\nVMware\n\n\u041f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Shadowserver, \u0431\u043e\u043b\u0435\u0435 40 \u0442\u044b\u0441. \u0443\u0437\u043b\u043e\u0432 ESXi \u0434\u043e\u0441\u0442\u0443\u043f\u043d\u044b \u0438\u0437\u0432\u043d\u0435 \u0438 \u043f\u043e\u0434\u0432\u0435\u0440\u0436\u0435\u043d\u044b \u0440\u0438\u0441\u043a\u0443:\n\nCVE-2025-22224 (CVSS 9.3) \u2014 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u043b\u044c\u043d\u0430\u044f \u0437\u0430\u043f\u0438\u0441\u044c \u0447\u0435\u0440\u0435\u0437 TOCTOU \u0432 \u0438\u043d\u0442\u0435\u0440\u0444\u0435\u0439\u0441\u0435 ESXi \u0438 Workstation.\n\nCVE-2025-22225 (CVSS 8.2) \u2014 \u0437\u0430\u043f\u0438\u0441\u044c \u043a\u043e\u0434\u0430 \u0432 \u043e\u0431\u043b\u0430\u0441\u0442\u044c \u044f\u0434\u0440\u0430 VMX-\u043f\u0440\u043e\u0446\u0435\u0441\u0441\u0430.\n\nCVE-2025-22226 (CVSS 7.1) \u2014 \u0443\u0442\u0435\u0447\u043a\u0430 \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u0438 \u0447\u0435\u0440\u0435\u0437 \u0447\u0442\u0435\u043d\u0438\u0435 \u0437\u0430 \u043f\u0440\u0435\u0434\u0435\u043b\u0430\u043c\u0438 \u0434\u043e\u043f\u0443\u0441\u0442\u0438\u043c\u043e\u0433\u043e \u0434\u0438\u0430\u043f\u0430\u0437\u043e\u043d\u0430 \u0432 HGFS.\n\n\u0420\u0435\u0448\u0435\u043d\u0438\u044f : \u0443\u0441\u0442\u0430\u043d\u043e\u0432\u043a\u0430 VMware Workstation 17.6.3, Fusion 13.6.3 \u0438 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0438\u0445 \u043f\u0430\u0442\u0447\u0435\u0439.\n\nKubernetes\n\nCVE-2025-1974 (CVSS 9.8) \u2014 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0432 ingress-nginx \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u0432\u044b\u043f\u043e\u043b\u043d\u0438\u0442\u044c \u043a\u043e\u0434 \u043d\u0430 \u0443\u0440\u043e\u0432\u043d\u0435 \u043a\u043b\u0430\u0441\u0442\u0435\u0440\u0430. \u041f\u043e\u0434 \u0443\u0434\u0430\u0440\u043e\u043c \u0431\u043e\u043b\u0435\u0435 6500 \u0438\u043d\u0441\u0442\u0430\u043d\u0441\u043e\u0432, \u043f\u043e \u0434\u0430\u043d\u043d\u044b\u043c Wiz .\n\n\u041c\u0435\u0440\u044b \u0437\u0430\u0449\u0438\u0442\u044b : \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 ingress-nginx, \u043e\u0442\u043a\u043b\u044e\u0447\u0435\u043d\u0438\u0435 Validating Admission Controller \u0438 \u0441\u0432\u044f\u0437\u0430\u043d\u043d\u044b\u0445 \u043c\u0435\u0445\u0430\u043d\u0438\u0437\u043c\u043e\u0432.\n\nApache\n\nCVE-2025-24813 (CVSS 9.8) \u2014 RCE \u0432 Tomcat \u0447\u0435\u0440\u0435\u0437 \u0447\u0430\u0441\u0442\u0438\u0447\u043d\u044b\u0435 PUT-\u0437\u0430\u043f\u0440\u043e\u0441\u044b \u0438 \u0434\u0435\u0441\u0435\u0440\u0438\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u044e. \u0418\u0441\u0441\u043b\u0435\u0434\u043e\u0432\u0430\u043d\u0438\u0435 Rapid7 \u0432\u044b\u044f\u0432\u0438\u043b\u043e ~200 \u0443\u044f\u0437\u0432\u0438\u043c\u044b\u0445 \u0441\u0435\u0440\u0432\u0435\u0440\u043e\u0432.\n\n\u0420\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 : \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u0434\u043e Tomcat 9.0.99, 10.1.35, 11.0.3 \u0438 \u0432\u044b\u0448\u0435.\n\n\ud83d\udd14 ITsec NEWS", "creation_timestamp": "2025-04-11T17:25:57.000000Z"}]}