Infosecurity Magazine

Broadcom Issues Patches for VMware NSX and vCenter Security Flaws

One of the most severe issues, tracked as CVE-2025-41250, is an SMTP header injection bug in vCenter. With a CVSSv3 base ...
SDxCentral

VMware updates cloud while calling time on third-party management packs

VMware released the latest version of its cloud platform, while announcing end of support for various management packs affiliated with hyperscalers and other third-party vendors.
Bleeping Computer

VMware fixes bad patch for critical vCenter Server RCE flaw

VMware has released another security update for CVE-2024-38812, a critical VMware vCenter Server remote code execution vulnerability that was not correctly fixed in the first patch from September 2024 ...
Hosted on MSN

Critical 9.8-rated VMware vCenter RCE bug exploited after patch fumble

Two VMware vCenter server bugs, including a critical heap-overflow vulnerability that leads to remote code execution (RCE), have been exploited in attacks after Broadcom’s first attempt to fix the ...
PCquest.com on MSN

VMware Flaws Under Attack – Patch Now, CISA Warns!

The U.S. Cybersecurity and Infrastructure Security Agency has raised urgent security alerts about three VMware vulnerabilities, including CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226, that ...
Ars Technica

VMware sandbox escape bugs are so critical, patches are released for end-of-life products

VMware is urging customers to patch critical vulnerabilities that make it possible for hackers to break out of sandbox and hypervisor protections in all versions, including out-of-support ones, of ...