Serial number: AV25-629
Date: September 29, 2025
Updated: October 30, 2025
On September 29, 2025, VMware published security advisories to address vulnerabilities in the following products:
- VMware Aria Operations – versions 8.x
- VMware Cloud Foundation – versions 4.x, 4.5.x, 5.x and 9.x.x.x
- VMware NSX - versions 4.2.x, 4.1.x and 4.0.x
- VMware NSX-T - version 3.x
- VMware Telco Cloud Infrastructure – versions 3.x and 2.x
- VMware Telco Cloud Platform – versions 5.x, 4.x, 3.x and 2.x
- VMware Tools – versions 13.x.x, 12.x.x and 11.x.x
- VMware vCenter – version 7.0 and 8.0
- VMware vSphere Foundation – versions 9.x.x.x and 13.x.x.x
Update 1
On October 30, 2025, CISA released a statement indicating that CVE-2025-41244 is being actively exploited in the wild and added it to their Known Exploited Vulnerabilities (KEV) Catalog.
The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.
- VMSA-2025-0015: VMware Aria Operations and VMware Tools updates address multiple vulnerabilities (CVE-2025-41244, CVE-2025-41245, CVE-2025-41246)
- VMSA-2025-0016: VMware vCenter and NSX updates address multiple vulnerabilities (CVE-2025-41250, CVE-2025-41251, CVE-2025-41252)
- Security Advisories - VMware Cloud Foundation
- CISA Adds Two Known Exploited Vulnerabilities to Catalog