Back to resource center

Staying one step ahead of VMware vulnerabilities with proactive protection from Rimini Protect™

Gabe Dimeglio
Gabe Dimeglio
CISO, SVP & GM Rimini Protect™ and Watch Solutions
3 min read
Staying one step ahead of VMware vulnerabilities with proactive protection from Rimini Protect™

March 4, 2025 was a day filled with uncertainty for VMware clients when the US government agency CISA (Cybersecurity and Infrastructure Security Agency) announced that three VMware ESXi vulnerabilities were being added to the Known Exploited Vulnerabilities (KEV) list.[1]  Two of these vulnerabilities were ranked as “severe” and one as “critical” based on their severity (CVSS) scores.

Broadcom acknowledged that one of the vulnerabilities could allow malicious code to access the underlying hypervisor, potentially compromising all virtual machines on a host.[2]  This sent many security teams scrambling, especially since ShadowServer reported over 41,000 servers as vulnerable as of March 6, 2025[3].

For Rimini Street clients, however, March 4 was just another ordinary day.

Rimini Protect™ Advanced Hypervisor Security (AHS), an exclusive solution powered by proven Vali Cyber®, effectively protected against all three vulnerabilities with the recommended configuration settings that are installed “out of the box.”[4]  So while many cybersecurity teams were scrambling with patches, testing and remediation plans, Rimini Protect AHS clients experienced no downtime or disruptions.

But the story goes deeper.

A security strategy that works

On the morning of March 4, before the CISA announcement, Rimini Street’s real-time threat intelligence network and proactive partner, Vali Cyber, notified the Rimini Protect cybersecurity team of the three newly discovered ESXi vulnerabilities and confirmed that these vulnerabilities were fully mitigated by the default configurations of Rimini Protect Advanced Hypervisor Security.  With advanced warning of the vulnerabilities, Rimini Street verified that remediations for these vulnerabilities were effective before sharing with clients.

Rimini Protect’s proactive protection model neutralizes threats before they become a crisis, complementing and enhancing existing security strategies that clients have in place. Instead of waiting for vendors to release patches, clients under Rimini Protect already had the necessary safeguards in place, allowing them to focus on businesses operations without being sidetracked by emergency security disruptions. Even if patches are issued immediately for every vulnerability, the logistical challenges and potential downtime can be significant when it comes to testing and deploying those patches, leaving your business exposed to exploited vulnerabilities.

Should additional remediations have been needed, Rimini Street and its partners were – and always are – fully prepared to act immediately, leveraging deep expertise in security and a global team of specialists dedicated to protecting mission-critical systems.

A proactive approach to security is the way forward

The events of March 4 serve as a reminder of how necessary a proactive security posture and partner are for companies that depend heavily on virtual machine environments for crucial business operations, customer engagement and financial activities.

Rimini Protect Advanced Hypervisor Security offers protection without any downtime or impact on business operations, helping to save time, money and resources that can be refocused on business innovation.

Rimini Street’s exclusive ability to offer Rimini Support with Rimini Protect Advanced Hypervisor Security empowers organizations to take charge of their operations, achieving up to 90% reduction in total support costs while ensuring effective and proactive security against vulnerabilities and exploits.

“At Rimini Street, we take pride in our commitment to protecting our clients’ mission-critical systems and the irreplaceable data that is constantly under threat. This is yet another great example of how our approach to securing systems against the exploitation of vulnerabilities pays dividends in terms of time to protection and efficacy.” – Gabe Dimeglio, CISO, SVP & GM Rimini Protect and Watch Solutions. 

Learn more about the Rimini Protect for Advanced Hypervisor Security solution and how we can tailor protection for your unique enterprise software ecosystem here.

[1] CISA Announcement

[2] Broadcom Announcement

[3] ShadowServer report on CVE-2025-22224

[4] AHS clients with the “ESXi VMX” rule enabled with the Response Type set to “Kill” or “Remediate” had immediate protection with no further action required.

Table of contents
You may also like

Gabe Dimeglio

CISO, SVP & GM Rimini Protect™ and Watch Solutions

Mr. Dimeglio serves as CISO, SVP & GM for Rimini Protect™ and Rimini Watch™ solutions. In this role, he is responsible for providing strategic leadership and management of Rimini Street’s internal information security and compliance team and programs, the Rimini Protect client-facing security services and solutions, and the Rimini Watch observability solution.

More from Gabe Dimeglio

Easily addressing New MITRE ATT&CK® Updates for VMware ESXi
Blog
Easily addressing New MITRE ATT&CK® Updates for VMware ESXi
Gabe Dimeglio
Gabe Dimeglio
CISO, SVP & GM Rimini Protect™ and Watch Solutions
3 min read

Security teams are understandably concerned about the safety of their virtualized environments with the recent swell of attacks utilizing vulnerabilities in VMware.[1] These constant threats have prompted global alerts concerning gaps in hypervisor security. In response, the MITRE Corporation recently updated its MITRE ATT&CK® framework to include specific guidelines for VMware ESXi that VMware licensees […]

Read Blog
No One Has Time for Complicated VMware Security Updates!
Blog
No One Has Time for Complicated VMware Security Updates!
Gabe Dimeglio
Gabe Dimeglio
CISO, SVP & GM Rimini Protect™ and Watch Solutions
2 min read

For VMware perpetual licensees without Broadcom support, installing security patches has become more challenging.   Last year, Broadcom assured vSphere customers that security patches for all supported versions would be made available to all customers — even those with expired support contracts.[1] However, on April 8, 2025, the company announced that updates for VMware vSphere ESXi […]

Read Blog
Rimini Street Makes Security Mitigations Publicly Available For Critical SAP NetWeaver Zero-Day Exploit
Blog
Rimini Street Makes Security Mitigations Publicly Available For Critical SAP NetWeaver Zero-Day Exploit
Gabe Dimeglio
Gabe Dimeglio
CISO, SVP & GM Rimini Protect™ and Watch Solutions
2 min read

On Thursday of last week, Rimini Protect™ security services identified that a critical vulnerability in SAP NetWeaver was actively exploited by threat actors. This exploit enables attackers to compromise systems without requiring authentication and then allows for lateral movement to carry out other malicious activities, such as data exfiltration and ransomware attacks. The CVSS score […]

Read Blog
A Bug’s Tale: The Lifecycle of a Software Bug: From Discovery to Defense  
Blog
A Bug’s Tale: The Lifecycle of a Software Bug: From Discovery to Defense  
Gabe Dimeglio
Gabe Dimeglio
CISO, SVP & GM Rimini Protect™ and Watch Solutions
3 min read

Software bugs: Where do they come from? How are they exterminated? You have cybersecurity questions, Rimini Street has answers. A software bug, commonly referred to as a vulnerability, is often present in the software when it’s first written. These flaws can range from minor glitches to major security gaps that open the door to cyberattacks. […]

Read Blog
Terminating Threats: IT Security Expertise in Action
Blog
Terminating Threats: IT Security Expertise in Action
Gabe Dimeglio
Gabe Dimeglio
CISO, SVP & GM Rimini Protect™ and Watch Solutions
3 min read

Gabe Dimeglio is the GVP & GM of Rimini Protect™ with more than 20 years of experience in IT and security for private and public-sector organizations and expertise in strategic consulting services, risk analysis/risk mitigation and compliance.   In my role leading the development and delivery of Rimini Protect™, I’ve always been focused on addressing the […]

Read Blog
Maintain Enterprise Vigilance by Focusing on Critical Cybersecurity Trends
Blog
Maintain Enterprise Vigilance by Focusing on Critical Cybersecurity Trends
Gabe Dimeglio
Gabe Dimeglio
CISO, SVP & GM Rimini Protect™ and Watch Solutions
3 min read

The constant barrage of alerts and news of cybersecurity threats and breaches can be overwhelming to the point of exhaustion, which raises further risk that overwhelmed IT teams are unable to focus on specific vulnerabilities in their enterprise. That’s why it’s important to make sure somebody is tasked with vulnerability management – continually evaluating the […]

Read Blog