Broadcom is warning customers of a high-severity, authentication bypass flaw, now fixed, affecting VMWare Tools for Windows.
Tracked as CVE-2025-22230, the issue stems from improper access control and could allow privilege escalation on the affected system.
“An authentication bypass vulnerability in VMware Tools for Windows was privately reported to VMware,” said Broadcom in a security advisory. “Updates are available to remediate this vulnerability in the affected VMware products.”