VMSA-2025-0004: Multiple Vulnerabilities in VMCI Heap Overflow, VMware ESXi Arbitrary Write, and HGFS Info Disclosure
search cancel

VMSA-2025-0004: Multiple Vulnerabilities in VMCI Heap Overflow, VMware ESXi Arbitrary Write, and HGFS Info Disclosure

book

Article ID: 396355

calendar_today

Updated On: 05-05-2025

Products

VMware vSphere ESXi VMware Telco Cloud Infrastructure - Cloud Director Edition

Issue/Introduction

Compatibility check for TCI 2.2 with ESXi 7.0 U3S.

Environment

ESXi: 7.0 U3S

2.2

Cause

VMSA-2025-0004: VMware ESXi, Workstation, and Fusion updates address multiple vulnerabilities (CVE-2025-22224, CVE-2025-22225, CVE-2025-22226)

VMCI heap-overflow vulnerability (CVE-2025-22224)

VMware ESXi arbitrary write vulnerability (CVE-2025-22225)

HGFS information-disclosure vulnerability (CVE-2025-22226)

Resolution

The mentioned versions are supported for ESXi, so you can proceed with the upgrade.

Additional Information

Note: The documentation will not be updated further, as TCI 2.2 has already reached End of General Support (EOGS).

VMware Telco Cloud Infrastructure 2.2 - TechDocs

 

Powered by Wolken Software