VMware ESXi zero-days likely exploited a year before disclosure

Chinese-speaking threat actors used a compromised SonicWall VPN appliance to deliver a VMware ESXi exploit toolkit that seems to have been developed more than a year before the targeted ...
SecurityWeek

Exploit for VMware Zero-Day Flaws Likely Built a Year Before Public Disclosure

Analysis of a recent attack targeting VMware ESXi vulnerabilities from March 2025 revealed an exploit developed a year before ...
The Hacker News

China-Linked Hackers Exploit VMware ESXi Zero-Days to Escape Virtual Machines

Researchers found Chinese-linked attackers abused SonicWall VPN access and VMware ESXi zero-day flaws to escape VMs and gain ...

China-linked cybercrims abused VMware ESXi zero-days a year before disclosure

Chinese-linked cybercriminals were sitting on a working VMware ESXi hypervisor escape kit more than a year before the bugs it ...

One Of The Most Underrated Defenses In Modern Security: Hypervisor MFA

Attackers have already recognized the strategic value of the hypervisor. The question now is whether defenders will treat it ...
Ars Technica

VMware Hypervisor ESXi v4.1 install on IBM x3550M2 Server

Does the server have light-out mgmt? You can upgrade the BIOS via that. That takes care of the host. ESXi updates can be done through a vCenter.