CVE-2025-41236

Summary

VMware ESXi, Workstation, and Fusion contain an integer-overflow vulnerability in the VMXNET3 virtual network adapter. A malicious actor with local administrative privileges on a virtual machine with VMXNET3 virtual network adapter may exploit this issue to execute code on the host. Non VMXNET3 virtual adapters are not affected by this issue.

Affected Software

VendorProductVersion RangeStatus
VMwareESXi8.0 < ESXi80U3f-24784735affected
VMwareESXi8.0 < ESXi80U2e-24789317affected
VMwareESXi7.0 < ESXi70U3w-24784741affected
VMwareCloud Foundation5.x, 4.5.xaffected
VMwareWorkstation17.x < 17.6.4affected
VMwareFusion13.x <= 13.6.4affected
VMwareTelco Cloud Platform5.x, 4.x, 3.x, 2.xaffected
VMwareTelco Cloud Infrastructure3.x, 2.xaffected

Weaknesses

  • CWE-787: CWE-787 Out-of-bounds Write

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: total

References