Insights from the Field

What is it? On July 15, 2025, Broadcom released VMSA-2025-0013, disclosing multiple critical vulnerabilities impacting VMware ESXi, Workstation, Fusion, and VMware Tools. These issues include three memory safety flaws that may lead to code execution on the host system, and one information disclosure issue resulting from uninitialized memory usage in vSockets. All four vulnerabilities were discovered through the Pwn2Own competition and responsibly reported to Broadcom. Patches

Special recognition to Lee Scites who collaborated on this article Introduction For the first time in Pwn2Own history, a researcher successfully compromised a VMware ESXi host, the very foundation of many enterprise virtualization environments. This occurred at Pwn2Own Berlin 2025, where Nguyen Hoang Thachof STARLabs SG leveraged a zero-day integer overflow vulnerability to execute code on the ESXi hypervisor from a guest VM. This isn’t just a competition milestone; it’s a wa