CVE-2025-22215 Information

Description

VMware Aria Automation contains a server-side request forgery (SSRF) vulnerability. A malicious actor with \Organization Member\ access to Aria Automation may exploit this vulnerability enumerate internal services running on the host/network.

Reference

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25312