High-Severity Vulnerability Patched in VMware Fusion 2026-05-14 at 12:48 By Eduard Kovacs The patch was announced as Broadcom is attending the Pwn2Own hacking competition in Berlin this week. The post High-Severity Vulnerability Patched in VMware Fusion appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
High-Severity Vulnerability Patched in VMware Fusion Read More »
VMware Aria Operations Vulnerability Exploited in the Wild 2026-03-04 at 09:28 By Eduard Kovacs The recently patched CVE-2026-22719 can be exploited by an unauthenticated attacker for remote code execution. The post VMware Aria Operations Vulnerability Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
VMware Aria Operations Vulnerability Exploited in the Wild Read More »
VMware Aria Operations Vulnerability Could Allow Remote Code Execution 2026-02-24 at 16:42 By Eduard Kovacs Broadcom has patched several vulnerabilities in VMware Aria Operations, including high-severity flaws. The post VMware Aria Operations Vulnerability Could Allow Remote Code Execution appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
VMware Aria Operations Vulnerability Could Allow Remote Code Execution Read More »
CISA confirms exploitation of VMware ESXi flaw by ransomware attackers 2026-02-05 at 18:17 By Zeljka Zorz CVE-2025-22225, a VMware ESXi arbitrary write vulnerability, is being used in ransomware campaigns, CISA confirmed on Wednesday by updating the vulnerability’s entry in its Known Exploited Vulnerabilities (KEV) catalog. Researchers linked VMware ESXi zero-day trio to single exploit toolkit
CISA confirms exploitation of VMware ESXi flaw by ransomware attackers Read More »
2024 VMware Flaw Now in Attackers’ Crosshairs 2026-01-26 at 07:36 By Ionut Arghire The critical-severity vulnerability can be exploited via crafted network packets for remote code execution. The post 2024 VMware Flaw Now in Attackers’ Crosshairs appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
2024 VMware Flaw Now in Attackers’ Crosshairs Read More »
Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure 2026-01-09 at 13:39 By Ionut Arghire Fresh attacks targeted three VMware ESXi vulnerabilities that were disclosed in March 2025 as zero-days. The post Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure appeared first on SecurityWeek. This article is an
Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure Read More »
CISA Adds Exploited XWiki, VMware Flaws to KEV Catalog 2025-10-31 at 13:59 By Ionut Arghire Broadcom has updated its advisory on CVE-2025-41244 to mention the vulnerability’s in-the-wild exploitation. The post CISA Adds Exploited XWiki, VMware Flaws to KEV Catalog appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
CISA Adds Exploited XWiki, VMware Flaws to KEV Catalog Read More »
Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability 2025-10-01 at 13:36 By Ionut Arghire Impacting VMware Aria Operations and VMware Tools, the flaw can be exploited to elevate privileges on the VM. The post Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek
Broadcom Fails to Disclose Zero-Day Exploitation of VMware Vulnerability Read More »
High-Severity Vulnerabilities Patched in VMware Aria Operations, NSX, vCenter 2025-09-30 at 14:33 By Ionut Arghire The flaws could allow attackers to escalate privileges, manipulate notifications, and enumerate usernames. The post High-Severity Vulnerabilities Patched in VMware Aria Operations, NSX, vCenter appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
High-Severity Vulnerabilities Patched in VMware Aria Operations, NSX, vCenter Read More »
Scattered Spider Targeting VMware vSphere Environments 2025-07-28 at 15:23 By Ionut Arghire The financially motivated group is pivoting from Active Directory to VMware vSphere environments, deploying ransomware from the hypervisor. The post Scattered Spider Targeting VMware vSphere Environments appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Scattered Spider Targeting VMware vSphere Environments Read More »
Chinese Spies Target Networking and Virtualization Flaws to Breach Isolated Environments 2025-07-25 at 16:19 By Ionut Arghire Chinese cyberespionage group Fire Ant is targeting virtualization and networking infrastructure to access isolated environments. The post Chinese Spies Target Networking and Virtualization Flaws to Breach Isolated Environments appeared first on SecurityWeek. This article is an excerpt from
Chinese Spies Target Networking and Virtualization Flaws to Breach Isolated Environments Read More »
VMware Flaws That Earned Hackers $340,000 at Pwn2Own Patched 2025-07-17 at 12:32 By Eduard Kovacs Four CVEs disclosed at the Pwn2Own Berlin 2025 hacking competition have been patched in VMware products. The post VMware Flaws That Earned Hackers $340,000 at Pwn2Own Patched appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
VMware Flaws That Earned Hackers $340,000 at Pwn2Own Patched Read More »
NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch 2025-05-20 at 17:02 By Ryan Naraine VMware patches flaws that expose users to data leakage, command execution and denial-of-service attacks. No temporary workarounds available. The post NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original
NATO-Flagged Vulnerability Tops Latest VMware Security Patch Batch Read More »
Malicious RVTools installer found on official site, researcher warns 2025-05-19 at 15:05 By Zeljka Zorz The official site for RVTools has apparently been hacked to serve a compromised installer for the popular utility, a security researcher has warned. It’s difficult to say how long the malicious version has been available for download, but the website
Malicious RVTools installer found on official site, researcher warns Read More »
Vulnerabilities Patched by Juniper, VMware and Zoom 2025-05-14 at 13:46 By Ionut Arghire Juniper Networks, VMware, and Zoom have announced patches for dozens of vulnerabilities across their products. The post Vulnerabilities Patched by Juniper, VMware and Zoom appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Vulnerabilities Patched by Juniper, VMware and Zoom Read More »
Vulnerabilities Patched by Ivanti, VMware, Zoom 2025-04-09 at 14:02 By Ionut Arghire Ivanti, VMware, and Zoom released fixes for dozens of vulnerabilities in their products on April 2025 Patch Tuesday. The post Vulnerabilities Patched by Ivanti, VMware, Zoom appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Vulnerabilities Patched by Ivanti, VMware, Zoom Read More »
VMware Patches Authentication Bypass Flaw in Windows Tools Suite 2025-03-25 at 17:07 By SecurityWeek News The authentication bypass vulnerability, tagged as CVE-2025-22230, carries a CVSS severity score of 7.8/10. The post VMware Patches Authentication Bypass Flaw in Windows Tools Suite appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
VMware Patches Authentication Bypass Flaw in Windows Tools Suite Read More »
Exploited VMware ESXi Flaws Put Many at Risk of Ransomware, Other Attacks 2025-03-06 at 12:03 By Eduard Kovacs Scans show that tens of thousands of VMware ESXi instances are affected by CVE-2025-22224 and other vulnerabilities disclosed recently as zero-days. The post Exploited VMware ESXi Flaws Put Many at Risk of Ransomware, Other Attacks appeared first
Exploited VMware ESXi Flaws Put Many at Risk of Ransomware, Other Attacks Read More »
Broadcom Patches 3 VMware Zero-Days Exploited in the Wild 2025-03-04 at 14:22 By Eduard Kovacs Broadcom patched VMware zero-days CVE-2025-22224, CVE-2025-22225 and CVE-2025-22226 after Microsoft warned it of exploitation. The post Broadcom Patches 3 VMware Zero-Days Exploited in the Wild appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source
Broadcom Patches 3 VMware Zero-Days Exploited in the Wild Read More »
BlackLock ransomware onslaught: What to expect and how to fight it 2025-02-18 at 18:33 By Zeljka Zorz BlackLock is on track to become the most active ransomware-as-a-service (RaaS) outfit in 2025, according to ReliaQuest. Its success is primarily due to their unusually active presence and good reputation on the ransomware-focused Russian-language forum RAMP, and their
BlackLock ransomware onslaught: What to expect and how to fight it Read More »