Broadcom
-
CISA adds VMware local privilege‑escalation zero-day to Known Exploited Vulnerabilities catalog
CISA added CVE-2025-41244, a high-severity VMware local privilege‑escalation flaw, to its Known Exploited Vulnerabilities catalog after reports of active exploitation. Broadcom-owned VMware has issued a patch, NVISO Labs reported zero-day use since October 2024, and federal agencies must apply mitigations by Nov. 20, 2025.
-
Broadcom Faces Data Theft Following Ransomware Attack on Payroll Partner
Broadcom has confirmed a data theft incident following a ransomware attack on its former payroll partner, Business Systems House. The breach affects sensitive employee data, prompting investigations and heightened security measures.
