CVE-2025-41244

VMSA-2025-0015: VMware Aria Operations and VMware Tools updates address multiple vulnerabilities (CVE-2025-41244,CVE-2025-41245, CVE-2025-41246)

Description

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability to escalate privileges to root on the same VM.

INFO

Published Date :

2025-09-29T16:09:51.871Z

Last Modified :

2026-02-26T17:47:52.174Z

Source :

vmware

AFFECTED PRODUCTS

The following products are affected by CVE-2025-41244 vulnerability.

Vendors	Products
Debian	Debian Linux
Linux	Linux Kernel
Microsoft	Windows
Vmware	Aria Operations Cloud Foundation Cloud Foundation Operations Open Vm Tools Telco Cloud Infrastructure Telco Cloud Platform Tools

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2025-41244.

URL	Resource
http://support.broadcom.com/group/ecx/support-content-view/-/support-content/Security%20Advisories/VMSA-2025-0015--VMware-Aria-Operations-and-VMware-Tools-updates-address-multiple-vulnerabilities--CVE-2025-41244-CVE-2025-41245--CVE-2025-41246-/36149
http://www.openwall.com/lists/oss-security/2025/09/29/10
https://blog.nviso.eu/2025/09/29/you-name-it-vmware-elevates-it-cve-2025-41244/
https://lists.debian.org/debian-lts-announce/2025/10/msg00000.html
https://nvd.nist.gov/vuln/detail/CVE-2025-41244
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-41244
https://www.cve.org/CVERecord?id=CVE-2025-41244

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact