¡¾Îó²îͨ¸æ¡¿VMware ESXi í§ÒâдÈëÎó²î(CVE-2025-22225)

Ðû²¼Ê±¼ä 2025-03-06

Ò»¡¢Îó²î¸ÅÊö


Îó²îÃû³Æ

VMware ESXi í§ÒâдÈëÎó²î

CVE   ID

CVE-2025-22225

Îó²îÀàÐÍ

í§ÒâдÈë

·¢Ã÷ʱ¼ä

2025-03-06

Îó²îÆÀ·Ö

8.2

Îó²îÆ·¼¶

¸ßΣ

¹¥»÷ÏòÁ¿

ÍâµØ

ËùÐèȨÏÞ

¸ß

ʹÓÃÄѶÈ

µÍ

Óû§½»»¥

ÎÞ

PoC/EXP

δ¹ûÕæ

ÔÚҰʹÓÃ

ÒÑ·¢Ã÷


VMware ESXiÊÇVMwareÌṩµÄÆóÒµ¼¶Type-1ÐéÄ⻯ÖÎÀí³ÌÐò£¨Hypervisor£©£¬£¬£¬£¬ÓÃÓÚЧÀÍÆ÷ÐéÄ⻯¡£¡£¡£¡£Ëü»ùÓÚÂã»ú¼Ü¹¹£¬£¬£¬£¬Ö±½ÓÔËÐÐÔÚÎïÀíЧÀÍÆ÷ÉÏ£¬£¬£¬£¬ÎÞÐèµ×²ã²Ù×÷ϵͳ£¬£¬£¬£¬Ìṩ¸ßÐÔÄÜ¡¢×ÊÔ´¸ôÀëºÍÇå¾²ÐÔ¡£¡£¡£¡£ESXiÖ§³ÖÐéÄâ»úÖÎÀí¡¢¶¯Ì¬×ÊÔ´µ÷Àí¼°¸ß¿ÉÓÃÐÔ£¬£¬£¬£¬ÆÕ±éÓ¦ÓÃÓÚÊý¾ÝÖÐÐĺÍÔÆÅÌËãÇéÐΡ£¡£¡£¡£


2025Äê3ÔÂ6ÈÕ£¬£¬£¬£¬¿­Ðý¹ú¼ÊÓÎÏ·¼¯ÍÅVSRC¼à²âµ½VMwareÐû²¼ÁËCVE-2025-22225Ïà¹ØÇ徲ͨ¸æ¡£¡£¡£¡£Í¨¸æÖ¸³ö£¬£¬£¬£¬VMware ESXi±£´æí§ÒâдÈëÎó²î£¬£¬£¬£¬¹¥»÷Õß¿ÉÔÚÌض¨Ìõ¼þÏÂÏòÄÚºËдÈëÊý¾Ý¡£¡£¡£¡£¾ß±¸VMXÀú³ÌȨÏ޵ĶñÒâ¹¥»÷Õß¿É´¥·¢Äں˼¶í§ÒâдÈ룬£¬£¬£¬´Ó¶øʵÏÖɳÏäÌÓÒÝ£¨Sandbox Escape£©£¬£¬£¬£¬Í»ÆÆÐéÄ⻯¸ôÀë¡£¡£¡£¡£¸ÃÎó²îCVSSv3ÆÀ·Ö8.2£¬£¬£¬£¬Îó²îÆ·¼¶Îª¸ßΣ¡£¡£¡£¡£


¶þ¡¢Ó°Ïì¹æÄ£


VMware ESXi 8.0 < ESXi80U3d-24585383
VMware ESXi 8.0 < ESXi80U2d-24585300
VMware ESXi 7.0 < ESXi70U3s-24585291
VMware Cloud Foundation 5.x < Òì²½²¹¶¡ESXi80U3d-24585383
VMware Cloud Foundation 4.5.x < Òì²½²¹¶¡ESXi70U3s-24585291
VMware Telco Cloud Platform 5.x, 4.x, 3.x, 2.x  < KB389385
VMware Telco Cloud Infrastructure 3.x, 2.x < KB389385


Èý¡¢Çå¾²²½·¥


3.1 Éý¼¶°æ±¾


Vmware¹Ù·½ÒÑÔÚÈçÏ°汾ÖÐÐÞ¸´ÁË´ËÎó²î¡£¡£¡£¡£½¨ÒéÊÜÓ°ÏìµÄÓû§¾¡¿ìÉý¼¶£¬£¬£¬£¬ÒÔ½â¾ö¸ÃÎÊÌâ¡£¡£¡£¡£

VMware ESXi 8.0 >= ESXi80U3d-24585383
VMware ESXi 8.0 >= ESXi80U2d-24585300
VMware ESXi 7.0 >= ESXi70U3s-24585291
VMware Cloud Foundation 5.x >= Òì²½²¹¶¡ESXi80U3d-24585383
VMware Cloud Foundation 4.5.x >= Òì²½²¹¶¡ESXi70U3s-24585291
VMware Telco Cloud Platform 5.x, 4.x, 3.x, 2.x >= KB389385
VMware Telco Cloud Infrastructure 3.x, 2.x >= KB389385


ÏÂÔØÁ´½Ó£ºhttps://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390/


3.2 ÔÝʱ²½·¥


ÔÝÎÞ¡£¡£¡£¡£


3.3 ͨÓý¨Òé


? °´ÆÚ¸üÐÂϵͳ²¹¶¡£¬£¬£¬£¬ïÔ̭ϵͳÎó²î£¬£¬£¬£¬ÌáÉýЧÀÍÆ÷µÄÇå¾²ÐÔ¡£¡£¡£¡£

ÔöǿϵͳºÍÍøÂçµÄ»á¼û¿ØÖÆ£¬£¬£¬£¬Ð޸ķÀ»ðǽսÂÔ£¬£¬£¬£¬¹Ø±Õ·ÇÐëÒªµÄÓ¦Óö˿ڻòЧÀÍ£¬£¬£¬£¬ïÔÌ­½«Î£ÏÕЧÀÍ£¨ÈçSSH¡¢RDPµÈ£©Ì»Â¶µ½¹«Íø£¬£¬£¬£¬ïÔÌ­¹¥»÷Ãæ¡£¡£¡£¡£
ʹÓÃÆóÒµ¼¶Çå¾²²úÆ·£¬£¬£¬£¬ÌáÉýÆóÒµµÄÍøÂçÇå¾²ÐÔÄÜ¡£¡£¡£¡£
ÔöǿϵͳÓû§ºÍȨÏÞÖÎÀí£¬£¬£¬£¬ÆôÓöàÒòËØÈÏÖ¤»úÖƺÍ×îСȨÏÞÔ­Ôò£¬£¬£¬£¬Óû§ºÍÈí¼þȨÏÞÓ¦¼á³ÖÔÚ×îµÍÏ޶ȡ£¡£¡£¡£
ÆôÓÃÇ¿ÃÜÂëÕ½ÂÔ²¢ÉèÖÃΪ°´ÆÚÐ޸ġ£¡£¡£¡£


3.4 ²Î¿¼Á´½Ó


https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25390
https://nvd.nist.gov/vuln/detail/CVE-2025-22225