Volerion logoVolerion
Volerion logoVolerion

VMware ESXi Denial-of-Service Vulnerability in Guest Operations

Vulnerability

A denial-of-service vulnerability has been identified in VMware ESXi, specifically when performing guest operations. This issue allows a malicious actor with guest operation privileges on a virtual machine (VM) to disrupt the functionality of guest VMs that have VMware Tools running and guest operations enabled. The vulnerability arises from the way guest operations are handled, potentially leading to a denial-of-service condition.

Impact

Exploitation of this vulnerability creates a denial-of-service condition for guest VMs, causing them to become unresponsive or unavailable.

Remediation

To address this vulnerability, users should apply the updates available in VMware ESXi 8.0 (ESXi80U3se-24659227) or VMware ESXi 7.0 (ESXi70U3sv-24723868).

Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm
spread
6.8
impact
2.5
exploitability
4.9
remediation
7.7
relevance
0.0
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.