Published threat advisories for March 4, 2025

VMware products can leak system memory if an attacker with administrative privileges in a virtual machine exploits a flaw in HGFS. This impacts data confidentiality and presents a business risk by potentially exposing sensitive information.

NVD published: March 4, 2025 • CISA KEV

VMware ESXi has a vulnerability that allows an attacker with internal privileges to write to the kernel, potentially escaping the sandbox. This impacts VMware ESXi systems, risking data and system control. The business risk is elevated due to observed exploitation.

NVD published: March 4, 2025 • CISA KEV

A vulnerability in VMware ESXi and Workstation allows a malicious actor with local administrative privileges within a virtual machine to execute code on the host system. This could impact host systems and data, posing a business risk.

NVD published: March 4, 2025 • CISA KEV

NAKIVO Backup & Replication software contains a path traversal vulnerability that may allow unauthorized reading of files. This could expose sensitive information and credentials, posing a risk to enterprise systems and data integrity. Organizations using the affected product should address this issue to protect their

NVD published: March 4, 2025 • CISA KEV