CVE-2025-41239

Name of the Vulnerable Software and Affected Versions VMware ESXi VMware Workstation VMware Fusion VMware Tools

Description The software contains an information disclosure issue due to the use of uninitialized memory in vSockets. A malicious actor with local administrative privileges on a virtual machine may be able to exploit this issue to leak memory from processes communicating with vSockets.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.