CVE-2025-22224: VMware ESXi TOCTOU VM Escape

Score: 9.3
CRITICAL
Published: 2025-03-04Affected: VMware ESXi, Workstation, FusionCWE-367 β†—

Can you escape a VMware virtual machine?

A TOCTOU (time-of-check time-of-use) vulnerability in VMware ESXi that enables VM escape. An attacker with local admin privileges on a virtual machine can exploit this to execute code on the host hypervisor.

Impact & Exploitation

Actively exploited as a zero-day. VM escape compromises the hypervisor and all VMs on the host. Critical for cloud providers and enterprise virtualization infrastructure.

Related Resources

πŸ” Related CWE Entries

πŸ“– Security Guides

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS9.3
SeverityCRITICAL
CWECWE-367
Published2025-03-04

Tags

vmwarevm-escapezero-daycloud

Quick Links

Is your system affected?

Precogs AI detects VMware ESXi TOCTOU VM Escape in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2025-22224 VMware ESXi TOCTOU VM Escape don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo