Ars Technica

VMware sandbox escape bugs are so critical, patches are released for end-of-life products

VMware is urging customers to patch critical vulnerabilities that make it possible for hackers to break out of sandbox and hypervisor protections in all versions, including out-of-support ones, of ...
Threat Post

Critical VMware Bugs Open ESXi, Fusion & Workstation to Attackers

A group of five security vulnerabilities could lead to a range of bad outcomes for virtual-machine enthusiasts, including command execution and DoS. VMware has issued a critical security update to ...
Bleeping Computer

Broadcom fixes three VMware zero-days exploited in attacks

Broadcom warned customers today about three VMware zero-days, tagged as exploited in attacks and reported by the Microsoft Threat Intelligence Center. The vulnerabilities (CVE-2025-22224, ...
CSOonline

VMware patches critical flaws that could allow attackers to escape VMs

Not yet exploited, these flaws could allow malicious code to be placed on host systems from inside a virtual machine. VMware has released fixes for several flaws that together could allow attackers to ...