Integer Overflow Vulnerability in VMware ESXi, Workstation, and Fusion Products
CVE-2025-41236

9.3CRITICAL

Key Information:

Vendor

Vmware
Status
Esxi
Cloud Foundation
Workstation
Fusion
Vendor
CVE Published:
15 July 2025

Badges

📈 Score: 393👾 Exploit Exists📰 News Worthy

What is CVE-2025-41236?

CVE-2025-41236 is an integer overflow vulnerability that affects VMware's ESXi, Workstation, and Fusion products, specifically pertaining to the VMXNET3 virtual network adapter. This product line is designed to provide virtualization solutions for running multiple operating systems on a single physical machine. The vulnerability arises from a flaw in how the VMXNET3 adapter handles certain input data, which can lead to conditions where an attacker with local administrative privileges on a virtual machine could potentially execute arbitrary code on the host machine. This poses a significant risk, as it could enable the attacker to manipulate the host environment, gain unauthorized access to sensitive data, or disrupt services.

Potential impact of CVE-2025-41236

  1. Remote Code Execution: The most critical impact is the ability for a malicious actor to execute arbitrary code on the host system. This could compromise the entire system, allowing for extensive data breach or manipulation.

  2. Escalation of Privileges: Given that the vulnerability requires local administrative privileges on a VM, an attacker who can exploit this flaw could escalate their privileges on the host, leading to a broader compromise of networked systems and resources.

  3. Service Disruption: Exploitation of this vulnerability could lead to service interruptions within virtualized environments, as an attacker may be able to forcibly shut down or manipulate VMs, adversely affecting availability and operational productivity for organizations relying on these systems.

Affected Version(s)

Cloud Foundation 5.x, 4.5.x

ESXi 8.0

ESXi 8.0

News Articles

favicon imageCyble

CSA Issues Critical Alert For VMware Vulnerabilities

Broadcom and CSA warn of critical VMware Vulnerabilities ilties flaws, including CVE-2025-41236 and CVE-2025-41237. Update ESXi, Workstation, and Fusion immediately to stay secure.

3 weeks ago

favicon imageCyber Security Agency of Singapore

Multiple Vulnerabilities in VMware Products

Security updates have been released for multiple vulnerabilities affecting VMware products.

3 weeks ago

References

https://support.broadcom.com/web/ecx/support-content-noti...

CVSS V3.1

Score:
9.3
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • 👾

    Exploit known to exist

  • 📰

    First article discovered by Cyber Security Agency of Singapore

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2025-41236 : Integer Overflow Vulnerability in VMware ESXi, Workstation, and Fusion Products