¡¾·ì϶¹«¸æ¡¿VMware ESXi ËÁÒâдÈë·ì϶(CVE-2025-22225)

°ä²¼¹¦·ò 2025-03-06

Ò»¡¢·ì϶¸ÅÊö


·ìϼûû³Æ

VMware ESXi ËÁÒâдÈë·ì϶

CVE   ID

CVE-2025-22225

·ì϶ÀàÐÍ

ËÁÒâдÈë

·¢ÏÖ¹¦·ò

2025-03-06

·ì϶ÆÀ·Ö

8.2

·ì϶µÈ¼¶

¸ßΣ

¹¥»÷ÏòÁ¿

±¾µØ

ËùÐèȨÏÞ

¸ß

ÀûÓÃÄѶÈ

µÍ

Óû§½»»¥

ÎÞ

PoC/EXP

δ¹«¿ª

ÔÚÒ°ÀûÓÃ

ÒÑ·¢ÏÖ


VMware ESXiÊÇVMwareÌṩµÄÆóÒµ¼¶Type-1Ðé¹¹»¯ÖÎÀí·¨Ê½£¨Hypervisor£©£¬£¬£¬£¬£¬£¬ÓÃÓÚ·þÎñÆ÷Ðé¹¹»¯¡£¡£¡£¡£¡£¡£Ëü»ùÓÚÂã»ú¼Ü¹¹£¬£¬£¬£¬£¬£¬Ö±½ÓÔËÐÐÔÚÎïÀí·þÎñÆ÷ÉÏ£¬£¬£¬£¬£¬£¬ÎÞÐèµ×²ã²Ù×÷ϵͳ£¬£¬£¬£¬£¬£¬Ìṩ¸ß»úÄÜ¡¢×ÊÔ´¸ôÀëºÍ°²È«ÐÔ¡£¡£¡£¡£¡£¡£ESXiÖ§³ÖÐé¹¹»úÖÎÀí¡¢¶¯Ì¬×ÊÔ´µ÷¶È¼°¸ß¿ÉÓÃÐÔ£¬£¬£¬£¬£¬£¬¿í·ºÀûÓÃÓÚÊý¾ÝÖÐÐĺÍÔÆÍÆËã»·¾³¡£¡£¡£¡£¡£¡£


2025Äê3ÔÂ6ÈÕ£¬£¬£¬£¬£¬£¬8827Ì«Ñô¼¯Íż¯ÍÅVSRC¼à²âµ½VMware°ä²¼ÁËCVE-2025-22225Óйذ²È«²¼¸æ¡£¡£¡£¡£¡£¡£²¼¸æÖ¸³ö£¬£¬£¬£¬£¬£¬VMware ESXi´æÔÚËÁÒâдÈë·ì϶£¬£¬£¬£¬£¬£¬¹¥»÷Õß¿ÉÔÚÌض¨Ç°ÌáÏÂÏòÄÚºËдÈëÊý¾Ý¡£¡£¡£¡£¡£¡£¾ß±¸VMX¹ý³ÌȨÏ޵ĶñÒâ¹¥»÷Õß¿É´¥·¢Äں˼¶ËÁÒâдÈ룬£¬£¬£¬£¬£¬´Ó¶øʵÏÖɳÏäÌÓÒÝ£¨Sandbox Escape£©£¬£¬£¬£¬£¬£¬Í»ÆÆÐé¹¹»¯¸ôÀë¡£¡£¡£¡£¡£¡£¸Ã·ì϶CVSSv3ÆÀ·Ö8.2£¬£¬£¬£¬£¬£¬·ì϶µÈ¼¶Îª¸ßΣ¡£¡£¡£¡£¡£¡£


¶þ¡¢Ó°ÏìÁìÓò


VMware ESXi 8.0 < ESXi80U3d-24585383
VMware ESXi 8.0 < ESXi80U2d-24585300
VMware ESXi 7.0 < ESXi70U3s-24585291
VMware Cloud Foundation 5.x < Òì²½²¹¶¡ESXi80U3d-24585383
VMware Cloud Foundation 4.5.x < Òì²½²¹¶¡ESXi70U3s-24585291
VMware Telco Cloud Platform 5.x, 4.x, 3.x, 2.x  < KB389385
VMware Telco Cloud Infrastructure 3.x, 2.x < KB389385


Èý¡¢°²È«´ëÊ©


3.1 Éý¼¶°æ±¾


Vmware¹Ù·½ÒÑÔÚÈçÏ°汾Öн¨¸´ÁË´Ë·ì϶¡£¡£¡£¡£¡£¡£½¨ÒéÊÜÓ°ÏìµÄÓû§¾¡¿ìÉý¼¶£¬£¬£¬£¬£¬£¬ÒÔ½â¾ö¸ÃÎÊÌâ¡£¡£¡£¡£¡£¡£

VMware ESXi 8.0 >= ESXi80U3d-24585383
VMware ESXi 8.0 >= ESXi80U2d-24585300
VMware ESXi 7.0 >= ESXi70U3s-24585291
VMware Cloud Foundation 5.x >= Òì²½²¹¶¡ESXi80U3d-24585383
VMware Cloud Foundation 4.5.x >= Òì²½²¹¶¡ESXi70U3s-24585291
VMware Telco Cloud Platform 5.x, 4.x, 3.x, 2.x >= KB389385
VMware Telco Cloud Infrastructure 3.x, 2.x >= KB389385


ÏÂÔØÁ´½Ó£ºhttps://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390/


3.2 һʱ´ëÊ©


ÔÝÎÞ¡£¡£¡£¡£¡£¡£


3.3 ͨÓý¨Òé


? ¶¨ÆÚ¸üÐÂϵͳ²¹¶¡£¡£¡£¡£¡£¡£¬£¬£¬£¬£¬£¬Ï÷¼õϵͳ·ì϶£¬£¬£¬£¬£¬£¬ÌáÉý·þÎñÆ÷µÄ°²È«ÐÔ¡£¡£¡£¡£¡£¡£

¼ÓǿϵͳºÍÍøÂçµÄ½Ó¼û½ÚÔ죬£¬£¬£¬£¬£¬Åú¸Ä·À»ðǽսÊõ£¬£¬£¬£¬£¬£¬¹Ø¹Ø·Ç±ØÒªµÄÀûÓö˿ڻò·þÎñ£¬£¬£¬£¬£¬£¬Ï÷¼õ½«Î£ÏÕ·þÎñ£¨ÈçSSH¡¢RDPµÈ£©Â¶³öµ½¹«Íø£¬£¬£¬£¬£¬£¬Ï÷¼õ¹¥»÷Ãæ¡£¡£¡£¡£¡£¡£
ʹÓÃÆóÒµ¼¶°²È«²úÆ·£¬£¬£¬£¬£¬£¬ÌáÉýÆóÒµµÄÍøÂ簲ȫ»úÄÜ¡£¡£¡£¡£¡£¡£
¼ÓǿϵͳÓû§ºÍȨÏÞÖÎÀí£¬£¬£¬£¬£¬£¬ÆôÓöà³É·ÖÈÏÖ¤»úÔìºÍ×îÓ×ȨÏÞ×¼Ôò£¬£¬£¬£¬£¬£¬Óû§ºÍÈí¼þȨÏÞӦά³ÖÔÚ×îµÍÏ޶ȡ£¡£¡£¡£¡£¡£
ÆôÓÃÇ¿ÃÜÂëÕ½Êõ²¢ÉèÖÃΪ¶¨ÆÚÅú¸Ä¡£¡£¡£¡£¡£¡£


3.4 ²Î¿¼Á´½Ó


https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390
https://nvd.nist.gov/vuln/detail/CVE-2025-22225