AI description
CVE-2025-22247 is a vulnerability in VMware Tools that stems from insecure file handling. A malicious actor with non-administrative privileges within a guest virtual machine can exploit this vulnerability to tamper with local files. This tampering can then trigger insecure file operations within the VM. This vulnerability, also known as ShadowWrite, allows low-privilege users inside a virtual machine to silently modify files, potentially influencing privileged operations or altering system behavior without detection. It affects VMware Tools versions 11.x and 12.x on Windows and Linux. There are currently no workarounds available, with patching being the recommended security measure. VMware has released version 12.5.2 to address the vulnerability.
- Description
- VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM.
- Source
- security@vmware.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 6.1
- Impact score
- 4.2
- Exploitability score
- 1.8
- Vector string
- CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
- Severity
- MEDIUM
- security@vmware.com
- CWE-59
- Hype score
- Not currently trending
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/OKUJEqZ9i9
@NoLabNoPartY
28 Jan 2026
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/d49WEbL7ID
@NoLabNoPartY
23 Jan 2026
64 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/QHRKlibjcf
@NoLabNoPartY
21 Jan 2026
31 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/3wZtxRXsOg
@NoLabNoPartY
15 Jan 2026
64 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/m5Wc9Eq1ps
@NoLabNoPartY
10 Jan 2026
59 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/zyqPMbfC5G
@NoLabNoPartY
6 Jan 2026
17 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/CrqVjnh1Es
@NoLabNoPartY
3 Jan 2026
95 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/C8SxtelgLx
@NoLabNoPartY
31 Dec 2025
79 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/oZr9x12tc3
@NoLabNoPartY
29 Dec 2025
24 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/9rde4PDXjT
@NoLabNoPartY
22 Dec 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/jiGbKnxLjA
@NoLabNoPartY
14 Dec 2025
10 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/9YZMIjnxvZ
@NoLabNoPartY
30 Nov 2025
62 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/HAAJZOojf9
@NoLabNoPartY
26 Nov 2025
52 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/LjIlOEA7x0
@NoLabNoPartY
22 Nov 2025
58 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/k0IJ3um7us
@NoLabNoPartY
19 Nov 2025
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/iYC5ZlX4S1
@NoLabNoPartY
13 Nov 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/IPuJyj8Wk0
@NoLabNoPartY
23 Oct 2025
19 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/XWuBsnBEDU
@NoLabNoPartY
19 Oct 2025
94 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/J1CKboapnG
@NoLabNoPartY
15 Oct 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/Dzq0nrUOWX
@NoLabNoPartY
8 Oct 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/tV6mauAxL8
@NoLabNoPartY
6 Oct 2025
16 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/6t6isfASE8
@NoLabNoPartY
3 Oct 2025
25 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/EihNbmM5e1
@NoLabNoPartY
29 Sept 2025
27 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/Nbb3oT4eHQ
@NoLabNoPartY
24 Sept 2025
77 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/iycozdmEXT
@NoLabNoPartY
18 Sept 2025
41 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/SfuSIWsQQm
@NoLabNoPartY
14 Sept 2025
96 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/MqOhuaFmEp
@NoLabNoPartY
9 Sept 2025
26 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/MtfK5xRV2t
@NoLabNoPartY
4 Sept 2025
32 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/FWlYbyFsSk
@NoLabNoPartY
31 Aug 2025
89 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/DaCYaUeo5Q
@NoLabNoPartY
28 Aug 2025
62 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/vuB6RbSCYq
@NoLabNoPartY
23 Aug 2025
66 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/NszjZ5kZj9
@NoLabNoPartY
20 Aug 2025
29 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/hrNmgI9pQU
@NoLabNoPartY
18 Aug 2025
56 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/T8tZ8ijFMM
@NoLabNoPartY
13 Aug 2025
52 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/Sr7eoYBr53
@NoLabNoPartY
9 Aug 2025
71 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/1z4MkdrrnG
@NoLabNoPartY
4 Aug 2025
53 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/8RMjRbTrpR
@NoLabNoPartY
2 Aug 2025
80 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/oKbCRL8wIA
@NoLabNoPartY
31 Jul 2025
44 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#exploit 1⃣. CVE-2025-20281: Cisco ISE API Unauthenticated RCE - https://t.co/bpaj1sWXKa 2⃣. CVE-2025-29017: Internet Banking System 2.0 RCE via Profile Picture Upload - https://t.co/4SzolqXLza 3⃣. CVE-2025-22230, CVE-2025-22247: The Guest Who Could - Exploiting LPE in VMW
@ksg93rd
28 Jul 2025
326 Impressions
1 Retweet
2 Likes
2 Bookmarks
0 Replies
0 Quotes
برای ابزار VMware tools آسیب پذیری هایی با کدهای شناسایی CVE-2025-22230 و CVE-2025-22247 از نوع privilege escalation منتشر شده است. این آسیب پذیری باعث می شود که هر یوزری به یوزر system در
@AmirHossein_sec
27 Jul 2025
47 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/Whc0Hdf2WX
@NoLabNoPartY
26 Jul 2025
60 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
👑 Our researcher has discovered LPE in VMWare Tools (CVE-2025-22230 & CVE-2025-22247) via VGAuth! Write-up by the one who broke it: Sergey Bliznyuk https://t.co/kIYroVd8HQ
@akaclandestine
26 Jul 2025
2723 Impressions
9 Retweets
40 Likes
22 Bookmarks
1 Reply
0 Quotes
CVE-2025-22230 & CVE-2025-22247 : LPE in VMWare Tools via VGAuth The Guest Who Could: Exploiting LPE in VMWare Tools https://t.co/vFTTkVST3g https://t.co/TGGiqwTppz
@freedomhack101
23 Jul 2025
53 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
👑 Our researcher has discovered LPE in VMWare Tools (CVE-2025-22230 & CVE-2025-22247) via VGAuth! Write-up by the one who broke it: Sergey Bliznyuk (@justbronzebee) https://t.co/8IECtEVd44 https://t.co/SE5fOxx3b5
@ptswarm
22 Jul 2025
5931 Impressions
37 Retweets
93 Likes
31 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/RIF4WMKs2z
@NoLabNoPartY
20 Jul 2025
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità https://t.co/wO5Y8y2VCq
@NoLabNoPartY
17 Jul 2025
15 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Due to community requests about VMWare open-vm-tools CVE-2025-22247, we're releasing patched versions of open-vm-tools on AlmaLinux ahead of our upstream. Learn more and help us with testing 👇 https://t.co/xav2SwJLGx
@AlmaLinux
17 Jun 2025
1197 Impressions
12 Retweets
39 Likes
4 Bookmarks
0 Replies
0 Quotes
🔐 Critical Patch Alert! CVE-2025-22247 in open-vm-tools allows file manipulation attacks (CVSS 6.9). ✅ Fixed in v12.5.2 ✅ Affects SUSE Linux 15 SP7 ✅ Patch now: zypper in -t patch [module] 📌 Details: 👉 https://t.co/plNwKCX2Ke #DevOps #CloudSe
@Cezar_H_Linux
30 May 2025
40 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Urgent: SUSE patches CVE-2025-22247 in open-vm-tools (CVSS 6.9). 🔸 Impacts: SUSE Linux 15 SP7 🔸 Fixes: File-handling vuln + GCC 15/containerd fixes 🔸 Update via zypper patch Read more: 👉https://t.co/5kJ8RxXImY #infosec https://t.co/ioQGaQYDHU
@Cezar_H_Linux
30 May 2025
33 Impressions
1 Retweet
1 Like
1 Bookmark
0 Replies
0 Quotes
[ Blog ] VMware Tools vulnerability CVE-2025-22247 https://t.co/lrGgy0T7WK #CVE #securityadvisory #vulnerabilità
@NoLabNoPartY
25 May 2025
90 Impressions
1 Retweet
2 Likes
0 Bookmarks
0 Replies
0 Quotes