CNNVD-202509-4392 Information

CNNVD ID

CNNVD-202509-4392

Related CVE

CVE-2025-41245

• CNNVD Published: 2025-09-29

Description (Chinese)

VMware Aria Operations是美国威睿（VMware）公司的一个统一的、人工智能驱动的自动驾驶 IT 运营管理平台，适用于私有云、混合云和多云环境。 VMware Aria Operations存在安全漏洞，该漏洞源于非特权用户可能利用此漏洞泄露其他用户的凭据。

Description (English)

VMware Aria Operations is a unified, artificially intelligent, self-driving IT operating management platform for U.S. Wisdom, which applies to private, hybrid and cloud-rich environments. VMware Aria Operations has a security gap, which stems from the possibility that non-privileged users may use it to divulge evidence from other users.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

威睿

Published

2025-09-29

Last Modified

2026-02-24

References

http://support.broadcom.com/group/ecx/support-content-view/-/support-content/Security%20Advisories/VMSA-2025-0015–VMware-Aria-Operations-and-VMware-Tools-updates-address-multiple-vulnerabilities–CVE-2025-41244-CVE-2025-41245–CVE-2025-41246-/36149

Patch

http://support.broadcom.com/group/ecx/support-content-view/-/support-content/Security%20Advisories/VMSA-2025-0015--VMware-Aria-Operations-and-VMware-Tools-updates-address-multiple-vulnerabilities--CVE-2025-41244-CVE-2025-41245--CVE-2025-41246-/36149