VMware security advisory (AV25-180)

Serial number: AV25-180
Date: April 1, 2025

On April 1, 2025, VMware released a security advisory to address a vulnerability in the following products:

• VMware Aria Operations – version 8.x
• VMware Cloud Foundation – versions 5.x and 4.x
• VMware Telco Cloud Platform – versions 5.x, 4.x and 3.x
• VMware Telco Cloud Infrastructure – versions 3.x and 2.x

The Cyber Centre encourages users and administrators to review the provided web links and perform the suggested mitigations.

• VMware Aria Operations updates address a local privilege escalation vulnerability (CVE-2025-22231)
• Security Advisories - VMware Cloud Foundation