Skip to main content
See every side of every news story
Get Started
SubscribeLogin
Published loading...Updated

Broadcom Finally Patches Dangerous VMware Zero-Day Exploited by Chinese Hackers

The China-linked UNC5174 group exploited a VMware local privilege escalation bug since October 2024, rated high severity with a CVSS score of 7.8, enabling root code execution.

Summary by Tech Radar
A bug abused since late 2024 has now finally been addressed.
Podcasts & Opinions

7 Articles

Tech RadarTech Radar
Reposted by
technewstube.comtechnewstube.com
Center

Broadcom finally patches dangerous VMware zero-day exploited by Chinese hackers

A bug abused since late 2024 has now finally been addressed.

·United Kingdom
Read Full Article
BleepingComputerBleepingComputer
Center

Chinese hackers exploiting VMware zero-day since October 2024

Broadcom has patched a high-severity privilege escalation vulnerability in its VMware Aria Operations and VMware Tools software, which has been exploited in zero-day attacks since October 2024.

Read Full Article
Techzine EuropeTechzine Europe

Chinese cyber threat exploited VMware vulnerability for a full year

The Chinese group UNC5174 was already exploiting VMware Tools and Aria Operations in October 2024, but was it intentional?

Read Full Article
The Cyber ExpressThe Cyber Express

VMware Vulnerability CVE-2025-41244 Exploited For A Year

A newly listed VMware zero-day vulnerability has been actively exploited by Chinese state-sponsored threat actors for almost a year, according to security researchers. The vulnerability, CVE-2025-41244, was reported to VMware parent Broadcom by NVISO researchers, who published a blog on September 29 detailing the in-the-wild exploitation. Broadcom also addressed the vulnerability in an advisory published the same day. The 7.8-rated local privile…

Read Full Article
cybernoz.comcybernoz.com

China-Linked Hackers Exploit New VMware Zero-Day Since October 2024 - Cybernoz - Cybersecurity News

Sep 30, 2025Ravie LakshmananZero-Day / Vulnerability A newly patched security flaw impacting Broadcom VMware Tools and VMware Aria Operations has been exploited in the wild as a zero-day since mid-October 2024 by a threat actor called UNC5174, according to NVISO Labs. The vulnerability in question is CVE-2025-41244 (CVSS score: 7.8), a local privilege escalation bug affecting the following versions – VMware Cloud Foundation 4.x and 5.x VMwar…

Read Full Article
The Hacker NewsThe Hacker News

Urgent: China-Linked Hackers Exploit New VMware Zero-Day Since October 2024

A newly patched security flaw impacting Broadcom VMware Tools and VMware Aria Operations has been exploited in the wild as a zero-day since mid-October 2024 by a threat actor called UNC5174, according to NVISO Labs. The vulnerability in question is CVE-2025-41244 (CVSS score: 7.8), a local privilege escalation bug affecting the following versions VMware Cloud Foundation 4.x and 5.x VMware

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

BleepingComputer broke the news in on Tuesday, September 30, 2025.
Sources are mostly out of (0)

Similar News Topics

VMware icon

VMware

Software icon

Software

Broadcom icon

Broadcom

China icon

China

News
For You
SearchBlindspotLocal