CISA orders feds to patch VMware Tools flaw exploited by Chinese hackers

CISA has ordered federal agencies to patch a high-severity vulnerability in Broadcom's VMware Aria Operations and VMware ...

Chinese state hackers may be using VMWare Tools flaw to hack US systems - so patch now, CISA warns

CISA added CVE-2025-41244 to KEV, mandating patching by November 20 The bug enables local privilege escalation via VMware Tools with SDMP enabled Chinese group UNC5174 exploited it for espionage ...