CVE-2025-22231

CVSS 3.1 Score 7.8 of 10 (high)

Details

Published Apr 1, 2025

CWE ID 269

Summary

CVE-2025-22231 is a local privilege escalation vulnerability affecting VMware Aria Operations. A malicious local administrator can exploit this flaw to escalate their privileges and gain root access to the VMware Aria Operations appliance. This vulnerability poses a significant risk, as it allows unauthorized users with local administrative privileges to increase their access and potentially compromise the entire system. Organizations that utilize VMware Aria Operations are strongly advised to apply the available patch as soon as possible to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

VMware Aria Operations

Affected Vendors

VMware

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/2Gx0fU
https://www.cve.org/CVERecord?id=CVE-2025-22231
https://nvd.nist.gov/vuln/detail/CVE-2025-22231

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Measuring the US-China AI Gap

TerraStealerV2 and TerraLogger: Golden Chickens' New Malware Families Discovered

Uncovering MintsLoader With Recorded Future Malware Intelligence Hunting

Know What Matters

For Customers

For Partners