cbcvebase.
CVE-2025-22222
published 2025-01-30

CVE-2025-22222: VMware Aria Operations contains an information disclosure vulnerability. A malicious user with non-administrative privileges may exploit this vulnerability to…

medium6.5CVSS 3.1
AVNACLPRLUINSUCHINAN
VMware Aria Operations contains an information disclosure vulnerability. A malicious user with non-administrative privileges may exploit this vulnerability to retrieve credentials for an outbound plugin if a valid service credential ID is known.

Affected

6 ranges
VendorProductVersion rangeFixed in
msrccbl2_wireshark_3.4.14-1_on_cbl_mariner_2.0
msrccbl_mariner_2.0_arm
msrccbl_mariner_2.0_x64
vmwarearia_operations>= 8.0 < 8.18.38.18.3
vmwarecloud_foundation4.0 – 5.2
vmwarevmware_aria_operations>= 8.x < 8.18.38.18.3