What is the CVSS score of CVE-2025-22226?

CVE-2025-22226 has a CVSS 3.1 base score of 7.1 (High). CVSS vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N. EPSS exploitation probability: 6.8%.

Which versions of ESXi are affected by CVE-2025-22226?

CVE-2025-22226 presents moderate security risk, a out-of-bounds read vulnerability rated CVSS 7.1. Exploitation could compromise the security of affected deployments.

Is CVE-2025-22226 being actively exploited?

Yes, CVE-2025-22226 is listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, confirming active in-the-wild exploitation. Immediate patching is required.

How to fix or mitigate CVE-2025-22226?

Within 24 hours: Identify all affected systems and apply vendor patches immediately. Monitor vendor channels for patch availability.

ESXi CVE-2025-22226

HIGH

Out-of-bounds Read (CWE-125)

2025-03-04 security@vmware.com

Buffer Overflow Information Disclosure VMware ESXi Cloud Foundation Fusion Telco Cloud Infrastructure Telco Cloud Platform Workstation

7.1

CVSS 3.1

CVSS VectorNVD

CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Attack Vector

Local

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

None

Availability

None

Lifecycle Timeline

Analysis Generated

Mar 28, 2026 - 18:29 vuln.today

Added to CISA KEV

Oct 30, 2025 - 19:52 cisa

CISA KEV

CVE Published

Mar 04, 2025 - 12:15 nvd

HIGH 7.1

DescriptionNVD

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability due to an out-of-bounds read in HGFS. A malicious actor with administrative privileges to a virtual machine may be able to exploit this issue to leak memory from the vmx process.

AnalysisAI

VMware ESXi, Workstation, and Fusion contain an information disclosure vulnerability via HGFS out-of-bounds read, allowing VM administrators to leak memory from the VMX process on the host.

Technical ContextAI

The CWE-125 out-of-bounds read in HGFS shared folder functionality allows reading beyond allocated buffers. The leaked VMX process memory may contain data from other VMs, host memory contents, or cryptographic keys.

RemediationAI

Apply VMware patches for all three CVEs. Disable HGFS shared folders if not required. Restrict VM administrator access.

CVE-2025-22226 vulnerability details – vuln.today

Back

ESXi CVE-2025-22226

CVSS VectorNVD

Lifecycle Timeline

DescriptionNVD

AnalysisAI

Technical ContextAI

RemediationAI

Share

External POC / Exploit Code