The Cybersecurity and Infrastructure Security Agency (CISA) has officially added a critical VMware ESXi zero‑day flaw to its Known Exploited Vulnerabilities (KEV) catalog following reports of active exploitation by ransomware operators. Tracked as CVE‑2025‑22225, the vulnerability allows attackers to perform an arbitrary memory write that leads to a sandbox escape, enabling code execution on the underlying ESXi host. The […] The post CISA Alerts on Actively Exploited VMware ESXi Zero-Day Used in Ransomware Campaigns appeared first on Cyber Security News.