VMware NSX has multiple Cross-Site Scripting (XSS) vulnerabilities, allowing code injection. A security bulletin on June 4, 2025, outlines three flaws, with severity scores from 5.9 to 7.5. Critical vulnerability CVE-2025-22243 impacts the NSX Manager UI, while CVE-2025-22244 and CVE-2025-22245 affect the gateway firewall and router port configurations, respectively. VMware advises immediate patching to mitigate risks.

“GPUGate” Malware Abuses Google Ads and GitHub to Deliver Advanced Malware Payload
A sophisticated malware campaign, dubbed “GPUGate,” abuses Google Ads and GitHub’s repository structure to trick users into downloading malicious software. The Arctic Wolf Cybersecurity Operations