Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools

ESXi 8.x and ESXi 9.x hosts using AMD-Pensando DPU products

Source -

CNA

CNA CVEs -

3

ADP CVEs -

0

CISA CVEs -

0

NVD CVEs -

0
Related CVEsRelated VendorsRelated AssignersReports
3Vulnerabilities found
CVE-2025-62627
Assigner-Advanced Micro Devices Inc.
ShareView Details
Assigner-Advanced Micro Devices Inc.
CVSS Score-7.2||HIGH
EPSS-0.01% / 2.87%
||
7 Day CHG~0.00%
Published-13 May, 2026 | 02:59
Updated-14 May, 2026 | 14:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

An untrusted pointer dereference in the ionic cloud driver for VMWare ESXi could allow an attacker with an unprivileged VM to read kernel memory or co-located guest VM memory, potentially resulting in loss of confidentiality or availability.

Action-Not Available
Vendor-Advanced Micro Devices, Inc.
Product-ESXi 8.x and ESXi 9.x hosts using AMD-Pensando DPU products
CWE ID-CWE-822
Untrusted Pointer Dereference
CVE-2025-62624
Assigner-Advanced Micro Devices Inc.
ShareView Details
Assigner-Advanced Micro Devices Inc.
CVSS Score-8.8||HIGH
EPSS-0.01% / 3.19%
||
7 Day CHG~0.00%
Published-13 May, 2026 | 02:58
Updated-14 May, 2026 | 14:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

Action-Not Available
Vendor-Advanced Micro Devices, Inc.
Product-ESXi 8.x and ESXi 9.x hosts using AMD-Pensando DPU products
CWE ID-CWE-122
Heap-based Buffer Overflow
CVE-2025-62623
Assigner-Advanced Micro Devices Inc.
ShareView Details
Assigner-Advanced Micro Devices Inc.
CVSS Score-8.8||HIGH
EPSS-0.01% / 3.19%
||
7 Day CHG~0.00%
Published-13 May, 2026 | 02:58
Updated-14 May, 2026 | 14:38
Rejected-Not Available
Known To Be Used In Ransomware Campaigns?-Not Available
KEV Added-Not Available
KEV Action Due Date-Not Available

A heap-based buffer overflow in the ionic cloud driver for VMware ESXi could allow an attacker to achieve privilege escalation, potentially resulting in arbitrary code execution.

Action-Not Available
Vendor-Advanced Micro Devices, Inc.
Product-ESXi 8.x and ESXi 9.x hosts using AMD-Pensando DPU products
CWE ID-CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer