HomeVmwareCVE-2025-22222

CVE-2025-22222

HIGH
7.7CVSS
Published: 2025-01-30
Updated: 2025-05-14
AI Analysis

Description

VMware Aria Operations contains an information disclosure vulnerability. A malicious user with non-administrative privileges may exploit this vulnerability to retrieve credentials for an outbound plugin if a valid service credential ID is known.

CVSS Metrics

Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N
Attack Vector
network
Complexity
low
Privileges
low
User Action
none
Scope
changed
Confidentiality
high
Integrity
none
Availability
none
Weaknesses
CWE-497

Metadata

Primary Vendor
VMWARE
Published
1/30/2025
Last Modified
5/14/2025
Source
NIST NVD
Note: Verify all details with official vendor sources before applying patches.

Affected Products

vmware : aria_operationsvmware : cloud_foundation

AI-Powered Remediation

Generate remediation guidance or a C-suite brief for this vulnerability.

Executive Intelligence Brief

View on NIST NVD
CVE-CVE-2025-22222 | HIGH Severity | CVEDatabase.com | CVEDatabase.com