{"id":39510,"date":"2025-10-02T00:21:07","date_gmt":"2025-10-01T22:21:07","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=39510"},"modified":"2025-10-02T08:36:38","modified_gmt":"2025-10-02T06:36:38","slug":"vmware-vulnerabilities-aria-vmware-tools-vcenter-and-nsx","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2025\/10\/02\/vmware-vulnerabilities-aria-vmware-tools-vcenter-and-nsx\/","title":{"rendered":"VMware vulnerabilities: Aria, VMware Tools, vCenter, and NSX"},"content":{"rendered":"

\"VMware\"[German<\/a>]Brief addendum\u2014vulnerabilities have been discovered in VMware products such as VMware Tools, VMware vCenter, and NSX, which the manufacturer is patching with updates. Here is a brief overview of these issues.<\/p>\n

<\/p>\n

VMware Aria and VMware Tools<\/h2>\n

\"\"Security advisory VMSA-2025-0015: VMware Aria Operations and VMware Tools updates address multiple vulnerabilities (CVE-2025-41244,CVE-2025-41245, CVE-2025-41246)<\/a> dated September 29, 2025, VMware points out several vulnerabilities in its VMware Tools and VMware Aria.<\/p>\n

Local Privilege Escalation vulnerability CVE-2025-41244<\/h3>\n

VMware Aria Operations and VMware Tools contain a vulnerability CVE-2025-41244<\/a>, CVSSv3 Base Score of 7.8, which allows local privilege escalation. A malicious local actor without administrator privileges who has access to a VM with VMware Tools installed that is managed by Aria Operations with SDMP enabled can exploit this vulnerability to elevate their privileges to root level on the same VM.<\/p>\n

NVISIO.EU has presented an analysis in this blog post<\/a>, and Bleeping Computer reports here<\/a> that the vulnerability has been exploited by Chinese hackers since 2024. VMware is providing an update<\/a> to close the vulnerability. VMware Tools 12.4.9, which is part of VMware Tools 12.5.4, also fixes the issue for Windows 32-bit. A version of open-vm-tools that fixes CVE-2025-41244 is being distributed by Linux vendors.<\/p>\n

VMware Aria Operations Information disclosure\u00a0vulnerability\u00a0CVE-2025-41245<\/h3>\n

VMware Aria Operations contains a security vulnerability CVE-2025-41245<\/a>, CVSSv3 Base Score of 4.9, which could lead to information disclosure. A malicious actor without administrator privileges in Aria Operations can exploit this vulnerability to disclose the login credentials of other Aria Operations users. To fix CVE-2025-41245, install the updates<\/a> provided by VMware.<\/p>\n

VMware vCenter and NSX<\/h2>\n

Security advisory VMSA-2025-0016: VMware vCenter and NSX updates address multiple vulnerabilities (CVE-2025-41250, CVE-2025-41251, CVE-2025-41252)<\/a> dated September 29, 2025, VMware points out several vulnerabilities in its VMware vCenter and NX.<\/p>\n

\u00a0vCenter SMTP header injection\u00a0vulnerability\u00a0CVE-2025-41250<\/h3>\n

VMware vCenter contains an SMTP header injection vulnerability CVE-2025-41250<\/a>, CVSSv3 Base Score of 8.5. A malicious actor without administrator privileges on vCenter, but with permission to create scheduled tasks, may be able to manipulate notification emails sent for scheduled tasks. To fix the vulnerability, install the updates<\/a> provided by VMware<\/p>\n

NSX weak password recovery mechanism\u00a0vulnerability\u00a0CVE-2025-41251<\/h3>\n

VMware NSX contains a vulnerability CVE-2025-41251<\/a>, CVSSv3 Base Score of 8.1, in the weak password recovery mechanism. An unauthenticated malicious actor can exploit this vulnerability to list valid usernames, which could potentially lead to brute force attacks. To fix CVE-2025-41251, install the updates<\/a>\u00a0provided by VMware.<\/p>\n

NSX username enumeration\u00a0vulnerability\u00a0(CVE-2025-41252)<\/h3>\n

VMware NSX contains a vulnerability CVE-2025-41252<\/a>, CVSSv3 Base Score of 7.5, when enumerating usernames. An unauthenticated malicious actor can exploit this vulnerability to list valid usernames, which could lead to unauthorized access attempts. To fix CVE-2025-41252, install the updates<\/a> provided by VMware.<\/p>\n

Similar articles:
\n<\/strong>VMware OEM portal offline, customers cannot activate VMware licenses<\/a>
\n<\/a>Broadcom ends perpetual licenses for VMware products \u2013 End of the free ESXi server?<\/a>
\n<\/a>VMware by Broadcom: \"Things are not going well with the Broadcom plans\"<\/a>
\n<\/a>Analyses: VMware acts as planned with licenses; switching to alternatives a problem<\/a>
\n<\/a>VMware users: Attention, portal migration to Broadcom on April 30, 2024<\/a>
\n<\/a>VMware Player\/Fusion Player is End of Sale; VMware security advisories now at Broadcom<\/a>
\n<\/a>Customer loss at VMware; Customers switch to Nutanix AHV; Bumpy portal switch<\/a>
\n<\/a>VMware by Broadcom signs agreement with Dell, Microsoft, Lenovo and HPE<\/a>
\n<\/a>Did the User Portal migration from VMware to Broadcom work for you?<\/a>
\nInterview: VMware takeover by Broadcom, what are the consequences?<\/a>
\nAnalysis: More than half of VMware customers are planning to leave<\/a>
\nVMWare by Broadcom: Next fail with training credits<\/a>
\nHas Broadcom's VMware bet paid off? Customers book largest package<\/a>
\nVMware vCenter: Update tokens required as of April 23, 2025<\/a>
\nVMware sues Siemens for lack of licenses<\/a>
\nNext VMWare by Broadcom license hammer: At least 72 cores required<\/a>
\nVMWare by Broadcom: 72 core licensing claim withdrawn<\/a>
\nVMware ESX update without token: Today (23.4.2025) last day<\/a>
\nBroadcom sends cease-and-desist letters to users of VMware perpetual licenses without a maintenance contract<\/a>
\nFSAS Technologies suspends VMware partnership from June 2025<\/a>
\nCISPE says: VMware has increased prices by 800 to 1500%<\/a>
\nVMware kicks lowest partner level (except in Europe)<\/a>
\nVMware by Broadcom kicks small and medium-sized partners out of partner program<\/a>
\nVMware Explore 2025: Visitor numbers drop to a quarter; VMware for submarines<\/a>
\nVMware news: 35% less workload in 3 years, Tesco lawsuit, but strong sales<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

[German]Brief addendum\u2014vulnerabilities have been discovered in VMware products such as VMware Tools, VMware vCenter, and NSX, which the manufacturer is patching with updates. Here is a brief overview of these issues.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580,1218],"tags":[69,651,1710],"class_list":["post-39510","post","type-post","status-publish","format-standard","hentry","category-security","category-virtualization","tag-security","tag-virtualization","tag-vmware"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/39510","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=39510"}],"version-history":[{"count":4,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/39510\/revisions"}],"predecessor-version":[{"id":39514,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/39510\/revisions\/39514"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=39510"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=39510"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=39510"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}