VDB
WID-SEC-W-2025-2153
WID-SEC-W-2025-2153
PUBLISHED
VMware Cloud Foundation ist eine Hybrid Cloud-Plattform für VM-Management und Container-Orchestrierung. Die Virtualisierungssoftware von VMware ermöglicht die simultane Ausführung von verschiedenen Betriebssystemen auf einem Host-System. VMware Aria Operations bietet eine einheitliche Plattform für das IT-Betriebsmanagement in Private-, Hybrid- und Multi-Cloud-Umgebungen. VMware Tools sind Applikationen und Treiber, mit denen die Gast-Betriebssysteme in einer virtuellen Maschine unter VMware zusätzliche Funktionalitäten erhalten.
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Red Hat Enterprise Linux | ||
| VMware Tools <12.5.4 | ||
| Oracle Linux | ||
| VMware Tools 13.0.5.0 | ||
| SUSE Linux | ||
| Amazon Linux 2 | ||
| Ubuntu Linux | ||
| Dell Secure Connect Gateway Appliance <5.32.00.18 | ||
| VMware Aria Operations <8.18.5 | ||
| VMware Cloud Foundation <9.0.1.0 | ||
| SUSE openSUSE | ||
| VMware Tools <13.0.5 | ||
| RESF Rocky Linux | ||
| Dell Secure Connect Gateway Appliance 5.32.00.18 | ||
| VMware Aria Operations 8.18.5 | ||
| Debian Linux | ||
| VMware Cloud Foundation 9.0.1.0 | ||
| VMware Tools 13.0.5 | ||
| VMware Tools 12.5.4 | ||
| VMware Tools <13.0.5.0 |
Timeline
- Sep 29, 2025 CVE Published
- Jan 21, 2026 CVE Updated
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
- Apr 1, 2026 Distribution Patch
References
- https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2153.json advisory
- https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2153 advisory
- https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149 url
- https://ubuntu.com/security/notices/USN-7785-1 url
- https://blog.nviso.eu/2025/09/29/you-name-it-vmware-elevates-it-cve-2025-41244/ url
- https://lists.suse.com/pipermail/sle-security-updates/2025-September/022754.html url
- https://lists.suse.com/pipermail/sle-security-updates/2025-September/022756.html url
- https://lists.suse.com/pipermail/sle-security-updates/2025-September/022757.html url
- https://lists.debian.org/debian-lts-announce/2025/10/msg00000.html url
- https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/6FFLQJU5BBI6GWWX67GFA2MKF6XI4DNC/ url
- https://access.redhat.com/errata/RHSA-2025:17429 url
- https://access.redhat.com/errata/RHSA-2025:17446 url
- https://access.redhat.com/errata/RHSA-2025:17452 url
- https://linux.oracle.com/errata/ELSA-2025-17428.html url
- https://linux.oracle.com/errata/ELSA-2025-17429.html url
- https://access.redhat.com/errata/RHSA-2025:17511 url
- https://access.redhat.com/errata/RHSA-2025:17445 url
- https://access.redhat.com/errata/RHSA-2025:17428 url
- https://linux.oracle.com/errata/ELSA-2025-17509.html url
- https://access.redhat.com/errata/RHSA-2025:17510 url
…and 12 more