{"id":65769,"date":"2025-05-22T09:00:24","date_gmt":"2025-05-22T07:00:24","guid":{"rendered":"https:\/\/nolabnoparty.com\/?p=65769"},"modified":"2025-05-22T13:41:56","modified_gmt":"2025-05-22T11:41:56","slug":"vmware-tools-vulnerability-cve-2025-22247","status":"publish","type":"post","link":"https:\/\/nolabnoparty.com\/en\/vmware-tools-vulnerability-cve-2025-22247\/","title":{"rendered":"VMware Tools vulnerability CVE-2025-22247"},"content":{"rendered":"<p><img decoding=\"async\" class=\"aligncenter wp-image-65770 size-full\" title=\"vmware-tools-vulnerability-cve-2025-22247-01\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/05\/vmware-tools-vulnerability-cve-2025-22247-01.jpg\" alt=\"vmware-tools-vulnerability-cve-2025-22247-01\" width=\"602\" height=\"202\" \/><\/p>\n<p>A new vulnerability <a href=\"https:\/\/nvd.nist.gov\/vuln\/detail\/CVE-2025-22247\" target=\"_blank\" rel=\"noopener\">CVE-2025-22247<\/a> has been reported, affecting VMware Tools installed on <strong>VMware vSphere VMs<\/strong>.<\/p>\n<p>Marked as a moderate-severity vulnerability with a <strong>CVSS score of 6.1<\/strong>, it allows attackers with non-administrative privileges on a guest VM to compromise local files, leading to insecure file operations within that VM.<!--more--><\/p>\n<p>&nbsp;<\/p>\n<h2>Remediation for CVE-2025-22247<\/h2>\n<p>To address this vulnerability, a fixed version of <strong>VMware Tools 12.5.2<\/strong> is now available. You can download it from <a href=\"https:\/\/support.broadcom.com\/group\/ecx\/productfiles?subFamily=VMware%20Tools&amp;displayGroup=VMware%20Tools%2012.x&amp;release=12.5.2&amp;os=&amp;servicePk=&amp;language=EN&amp;freeDownloads=true\" target=\"_blank\" rel=\"noopener\">this link<\/a>.<\/p>\n<p><img decoding=\"async\" class=\"aligncenter wp-image-65772 size-large\" title=\"vmware-tools-vulnerability-cve-2025-22247-02\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/2025\/05\/vmware-tools-vulnerability-cve-2025-22247-02-600x115.jpg\" alt=\"vmware-tools-vulnerability-cve-2025-22247-02\" width=\"600\" height=\"115\" \/><\/p>\n<p>Additional info can be found in the <a href=\"https:\/\/techdocs.broadcom.com\/us\/en\/vmware-cis\/vsphere\/tools\/12-5-0\/release-notes\/vmware-tools-1252-release-notes.html\" target=\"_blank\" rel=\"noopener\">Release Notes<\/a>.<\/p>\n<p>Failing to patch and remediate security vulnerabilities <strong>exposes your environment to exploitation<\/strong>, potentially leading to data breaches, system compromise, and operational disruption.<\/p>\n<p><strong>Proactive mitigation<\/strong> is essential to maintaining a secure and resilient infrastructure.<\/p>\n<p><img decoding=\"async\" title=\"signature\" src=\"https:\/\/nolabnoparty.com\/wp-content\/uploads\/images\/firma.jpg\" alt=\"signature\" \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>A new vulnerability CVE-2025-22247 has been reported, affecting VMware Tools installed on VMware vSphere VMs. Marked as a moderate-severity vulnerability with a CVSS score of 6.1, it allows attackers with non-administrative privileges on a guest VM to compromise local files, leading to insecure file operations within that VM.<\/p>\n","protected":false},"author":3,"featured_media":65770,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"rop_custom_images_group":[],"rop_custom_messages_group":[],"rop_publish_now":"initial","rop_publish_now_accounts":{"linkedin_93tdZWzMZc_93tdZWzMZc":"","facebook_2879994398731222_17841400390232720":"","twitter_113568041_113568041":"","mastodon_115463926174894442_115463926174894442":""},"rop_publish_now_history":[],"rop_publish_now_status":"pending","footnotes":""},"categories":[2801,903],"tags":[2973,2974,2425],"class_list":["post-65769","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-virtualization-en","category-vmware-en","tag-cve-2025-22247","tag-security-advisory","tag-vulnerability","has_thumb"],"_links":{"self":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/65769","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/users\/3"}],"replies":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/comments?post=65769"}],"version-history":[{"count":0,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/posts\/65769\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media\/65770"}],"wp:attachment":[{"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/media?parent=65769"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/categories?post=65769"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/nolabnoparty.com\/en\/wp-json\/wp\/v2\/tags?post=65769"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}