CVE-2025-41241
published 2025-07-29CVE-2025-41241: VMware vCenter contains a denial-of-service vulnerability. A malicious actor who is authenticated through vCenter and has permission to perform API calls for…
medium4.4CVSS 3.1
AVNACHPRHUINSUCNINAH
VMware vCenter contains a denial-of-service vulnerability. A malicious actor who is authenticated through vCenter and has permission to perform API calls for guest OS customisation may trigger this vulnerability to create a denial-of-service condition.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| vmware | cloud_foundation | — | — |
| vmware | telco_cloud_infrastructure | — | — |
| vmware | telco_cloud_platform | — | — |
| vmware | vcenter | >= 7.0 < 7.0 U3v | 7.0 U3v |
| vmware | vcenter | >= 8.0 < 8.0 U3g | 8.0 U3g |