#heap_overflow

2025-03-05

VMware recently addressed several serious security flaws in their products, including ESXi, Workstation, and Fusion.

CVE-2025-22224: This critical flaw allows attackers to send malicious data to the system, causing it to behave unpredictably.

CVE-2025-22225: This vulnerability lets attackers write data into restricted areas of the system. By doing so, they can escape the virtual machine's sandbox (a protective barrier) and gain unauthorized access to the host system.

CVE-2025-22226: This flaw allows attackers to read sensitive information from the system's memory.

blogs.vmware.com/security/

support.broadcom.com/web/ecx/s

#cybersecurity #vulnerability #cve #vmware #esxi #workstation #pro #player #fusion #cloud #heap_overflow

Ciourte Piailleciourte@piaille.fr
2022-11-22

"Generic remote exploit techniques for the PHP allocator, and 0days" by Charles Fol
#Grehack #infosec #cybersecurity #conference #sketchnote #sketchnotes #php #php_internals #heap_overflow #pwn #zeroday

Client Info

Server: https://mastodon.social
Version: 2025.04
Repository: https://github.com/cyevgeniy/lmst