Product Releases
| Product | Version | Release Date | Download | Release Notes |
|---|---|---|---|---|
| VMware Tools for Windows | 12.5.1 | 03/12 | Download | Release Notes |
VMware Security Advisory
VMSA-2025-0005 [IMPORTANT][CVSSv3: 7.8]
Products
- VMware Tools for Windows
CVE(s):
- VMware Tools for Windows update addresses an authentication bypass vulnerability (CVE-2025-22230)
Description:
- VMware Tools for Windows contains an authentication bypass vulnerability due to improper access control. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.8. A malicious actor with non-administrative privileges on a Windows guest VM may gain ability to perform certain high-privilege operations within that VM. VMware would like to thank Sergey Bliznyuk of Positive Technologies for reporting this issue to us.
| Version | CVE | Fixed Version | Workaround | Release Notes | |
| 12.x.x, 11.x.x | CVE-2025-22230 | 12.5.1 | none | Release Notes | |
VMware Tools 12.4.6 which is part of VMware Tools 12.5.1 addresses the issue for Windows 32-bit .
KB Article
| Subject | ID |
|---|---|
| Issues with applying CSP-97727 patch on VIDM | 392406 |
| Skyline Health Alert – vSAN Health Service – Online Health – vSAN Support Insight | 392434 |
| VIB/Plugin removed from ESXi host after patching using vLCM single images | 392404 |
| NSX download option just gives a circle with a line through it | 392396 |
| Stretched vSAN Network alerting for jumbo frames | 392374 |
| Large number of duplicate acknowledgements (DUP ACK) seen when doing data transfer over NSX L2VPN | 392334 |
| VM settings for hardening | 392321 |
| Broadcom is announcing End of General Support (EOGS), effective March 28, 2025 for Aria Operations Management Pack for Horizon (MP4H) | 392309 |
| Virtual machine crashed during backup | 392270 |
| Unable to manage any VMs on the Host after failed attempt to unmount the Datastore | 392262 |
| How to move vSAN encryption to Native Key Provider (NKP). | 392250 |
| „Cannot validate proxy configuration. Proxy server didn’t allow connection from VCF SDDC Manager to destination URL“, Configuring proxy in SDDC Manager fails | 392212 |
| Intel(R) Ethernet Controller X710 for 10GbE SFP+ network cards are invisible after upgrading the host to ESXi 8.0 Update 3b | 392205 |
| Unable to add a new esxi host to vCenter – Failed to connect to the remote host, reason = rpc_s_no_memory | 392197 |
| VMware Aria Operations is already registered | 392154 |
| FC storage disappear after ESXi upgrade to 7.0 U3 | 392148 |
| Error: „A general system error occurred: Launch failure YYYY-MM-DDTHH:MM:SS.451039Z Transport (VMDB) error -45: Failed to connect to peer process“ when vMotion failed | 392144 |
| vSAN OSA Shutdown procedure for vSAN stretched Cluster. | 392125 |
| SDDC Manager bundle management error – BundleDownloadFailureException: Error [403] downloading bundle | 392104 |
| Host in a vSAN environment is not responding | 392012 |
| Unicode Decoder Error : Invalid Start Byte when trying to install VMWare ESXI 8.0.3 | 392006 |
| ESXi patch failed with „the requirement cannot be satisfied within the ImageProfile“ | 392005 |
| NSX upgrade failed with the error message „Failed to create local backup“ | 391998 |
| Cannot install the vCenter Server agent service: „Unknown installer error“ | 391993 |
| PSOD due to a VMFS datastore corruption | 391980 |
| vSAN Host Patching Stuck at 30% During Upgrade Process | 391961 |
| ESXi host is not responding while VMs are running following a recovery from a storage outage | 391818 |
| ESXi Host hang at reboot with „Initializing init vmkernel shutdown helper: (7/39) reboot_runhandlers vsan“ | 391795 |
| Cannot access the Aria Operations for Logs web UI | 391784 |
| Host un-responsive post PSOD. | 391721 |
| Fail to start vsan-health service in vCenter | 391673 |
| vsan production down after vsan cluster shutdown and restart | 391651 |
| vSAN Cluster Storage Usage Spikes Above 90% in Recent Hours | 391635 |
Podcast | Webinar | Blog Posts
| How Customers Download VCF Software Binaries | Update |
| Effective 31.3.2025, only users with the Product Administrator role have the capability to create the token for their site.KB: https://knowledge.broadcom.com/external/article/390098 | |
| Boosting VM Performance with vSphere 8.0 Virtual Topology: What You Need to KnowPERFORMANCE TECHNICAL WHITE PAPER – MARCH 2025 | White paper |
| VMware vSphere 8.0 introduces a major enhancement for virtual CPU configuration: virtual topology. This feature automatically determines the optimal way to assign virtual CPUs (vCPUs) to virtual machines, improving alignment with physical hardware and potentially boosting performance. […] | |
| Announcing New Pass TypesVMware Explore Las Vegas 2025 | Explore 2025 |
| VMware Explore in Las Vegas will offer a more personalized approach to registration with new tiered pass options for attendees. Attendees will now have the option to register for a Full Event Pass, Essentials Pass or Meetings+ Pass based on their event needs. | |
| Beyond Monitoring: How Network Observability Transforms IT OperationsVMware CMTY Podcast #719 | Podcast |
| Catch the next VMware Community Roundtable Podcast WE, April 2: Network Observability Solutions – with Jeremy guest Rossbach – Product Marketing Engineer, AOD, CA Inc.; Chief Technical Evangelist, Tech Influencer, and Host of The NetOps Expert Podcast | |
| vCenter Server Identity Federation with Synology SSOwilliamlam.com/ | Blogpost |
| I recently found another cool use case for my Synology NAS, which is using the Synology SSO application to setup vCenter Server Identity Federation. I had not considered looking at Synology, but I was recently setting up some additional DNS entries and noticed there was SSO Server application, that supports both SAML2 and OIDC. Disclaimer: Synology SSO is currently not an officially supported vCenter Server IdP, please use at your own risk. | |
| Reminder: vSphere 7 to reach End of Service on Oct 2, 2025LinkedIn Article | Blogpost |
| We previously announced the extension of the General Support period for VMware vSphere 7.x and VMware vSAN 7.x, and we would like to take this opportunity to remind customers that the EoGS date is just six months away. Originally set as April 2, 2025, the End of Service (EoS) date was extended by six months to October 2, 2025. After October 2, customers still running vSphere 7.x and/or vSAN 7.x will not be able to receive product support, security patches and updates. Also, customers will not be able to engage with Broadcom Support for these releases after the October 2, 2025. | |
| Using vSAN Snapshots To Expand Your Protection CapabilitiesVMware Cloud Foundation – vSAN | Youtube |
| Data protection strategies often include snapshots in some form or another. Learn how vSAN ESA snapshots can play an integral part of a data protection strategy, as well as augment formal data protection practices to make recovery operations more convenient. The UK and Ireland VCF Specialist Solution Architect team would like to invite you to this webinar series focused on various software components of the VCF platform. Being a series, you are encouraged to attend each of the sessions to provide you with a deeper technical understanding of what VCF has to offer and how all the component parts work together to provide a robust and highly scalable private cloud platform. | |
| Beginning Automation with VMware vDefend Distributed FirewallLinkedIn Article | Guide |
| Want to learn how to use the VMware vDefend Distributed Firewall API to create groups, policy and rules? This helpful guide can help you learn how to navigate and use the API without any programming knowledge required! It focuses on the basics of using the API using REST calls with Postman. | |