CVE-2025-22220

Summary

CVE-2025-22220 is a privilege escalation vulnerability affecting VMware Aria Operations for Logs. Non-administrative users with network access to the API can exploit this issue to carry out administrative tasks, potentially gaining elevated privileges within the system. This vulnerability poses a significant risk and requires immediate attention from VMware users to apply the necessary patches or mitigations.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.