Serial number: AV25-864
Date: December 29, 2025
Between December 22 and 28, 2025, VMware published security advisories to address critical vulnerabilities in multiple Tanzu products:
- AI Services for VMware Tanzu Platform – versions prior to 10.3.2
- Application Services for VMware Tanzu Platform – versions prior to 3.3.13
- Elastic Application Runtime Windows add-on for VMware Tanzu Platform – versions prior to 10.2.6+LTS-T, 10.3.2 and 6.0.23+LTS-T
- Healthwatch – versions prior to 2.3.4
- Isolation Segmentation for VMware Tanzu Platform – versions prior to 10.2.6+LTS-T, 10.3.2 and 6.0.23+LTS-T
- Java Buildpack – versions prior to 4.86.0
- Stemcells (Windows) – versions prior to 2019.93.x
- Tanzu Hub – versions prior to 10.3.2
- VMware Tanzu for Postgres on Tanzu Platform – versions prior to 10.2.2
- VMware Tanzu GemFire on Tanzu Platform – versions prior to 2.2.1
- VMware Tanzu Greenplum – versions prior to 7.7.0
- VMware Tanzu Greenplum SQL Editor – versions prior to 1.2.1
- VMware Tanzu RabbitMQ on Tanzu Platform – versions prior to 10.1.1
The Cyber Centre encourages users and administrators to review the provided web link and apply the necessary updates.