CVE-2025-22247

NameCVE-2025-22247
DescriptionVMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, GitHub advisories/code/issues, web search, more)
ReferencesDLA-4165-1, DSA-5919-1
Debian Bugs1105159

Vulnerable and fixed packages

The table below lists information on source packages.

Source PackageReleaseVersionStatus
open-vm-tools (PTS)bullseye2:11.2.5-2+deb11u3vulnerable
bullseye (security)2:11.2.5-2+deb11u4fixed
bookworm2:12.2.0-1+deb12u2vulnerable
bookworm (security)2:12.2.0-1+deb12u3fixed
trixie, sid2:12.5.0-2fixed

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
open-vm-toolssourcebullseye2:11.2.5-2+deb11u4DLA-4165-1
open-vm-toolssourcebookworm2:12.2.0-1+deb12u3DSA-5919-1
open-vm-toolssource(unstable)2:12.5.0-21105159

Notes

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25683
Patches: https://github.com/vmware/open-vm-tools/tree/CVE-2025-22247.patch
https://www.openwall.com/lists/oss-security/2025/05/12/2
Search for package or bug name: Reporting problems