CVE-2025-41238 | VMware ESXi Paravirtualized SCSI out-of-bounds write

Inserito da Angelo Barbosa | Lug 15, 2025 | CVE

A vulnerability was found in VMware ESXi, Cloud Foundation, Workstation, Fusion, Telco Cloud Platform and Telco Cloud Infrastructure. It has been declared as critical. This vulnerability affects unknown code of the component Paravirtualized SCSI. The manipulation leads to out-of-bounds write.

This vulnerability was named CVE-2025-41238. Attacking locally is a requirement. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2025-41238 | VMware ESXi Paravirtualized SCSI out-of-bounds write

Post correlati

CVE-2022-48691 | Linux Kernel up to 5.10.142/5.15.67/5.19.8 include/linux/slab.h nft_chain_release_hook memory leak

CVE-2024-44216 | Apple macOS up to 13.6/14.6 access control

CVE-2024-28745 | AbemaTV ABEMA App prior 10.65.0 on Android access control

CVE-2024-53746 | FlickDevs Elementor Button Plus Plugin up to 1.3.3 on WordPress cross site scripting