VMware security advisory (AV25-424)

Serial number: AV25-424
Date: July 15, 2025

On July 15, 2025, VMware published a security advisory to address vulnerabilities in the following products:

• VMware Cloud Foundation – version 9.0.0.0
• VMware vSphere Foundation – version 9.0.0.0
• VMware ESXi – version 8.0
• VMware ESXi – version 8.0
• VMware ESXi – version 7.0
• VMware Workstation – version 17.x
• VMware Fusion – version 13.x
• VMware Cloud Foundation – version 5.x
• VMware Cloud Foundation – version 4.5.x
• VMware Telco Cloud Platform – versions 5.x and 4.x
• VMware Telco Cloud Platform – versions 3.x and 2.x
• VMware Telco Cloud Infrastructure – versions 3.x and 2.x
• VMware Tools [1] – version 13.x.x
• VMware Tools [1] – versions 12.x.x and 11.x.x
• VMware Tools – versions 13.x.x, 12.x.x and 11.x.x
• VMware Tools – versions 13.x.x, 12.x.x and 11.x.x

The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.

• VMSA-2025-0013: VMware ESXi, Workstation, Fusion, and Tools updates address multiple vulnerabilities (CVE-2025-41236, CVE-2025-41237, CVE-2025-41238, CVE-2025-41239)
• Security Advisories - VMware Cloud Foundation