Vulnerabilities
Misconfiguration
Compliance
CVE Vulnerabilities

CVE-2025-41244

Privilege Defined With Unsafe Actions

Published: Sep 29, 2025 | Modified: Oct 31, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
7.8 IMPORTANT
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Ubuntu
MEDIUM
Vulnerability-free packages from our partners
Additional information
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2025-41244
CWEhttps://cwe.mitre.org/data/definitions/267.html

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability to escalate privileges to root on the same VM.

Weakness

A particular privilege, role, capability, or right can be used to perform unsafe actions that were not intended, even when it is assigned to the correct entity.

Affected Software

Name Vendor Start Version End Version
Aria_operations Vmware 8.0 (including) 8.18.5 (excluding)
Cloud_foundation Vmware 4.0 (including) 5.2.2 (including)
Cloud_foundation_operations Vmware 9.0 (including) 9.0 (including)
Telco_cloud_infrastructure Vmware 2.2 (including) 3.0 (including)
Telco_cloud_platform Vmware 4.0 (including) 5.0.1 (excluding)
Red Hat Enterprise Linux 10 RedHat open-vm-tools-0:12.5.0-1.el10_0.1 *
Red Hat Enterprise Linux 8 RedHat open-vm-tools-0:12.3.5-2.el8_10.1 *
Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support RedHat open-vm-tools-0:11.2.0-2.el8_4.5 *
Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On RedHat open-vm-tools-0:11.2.0-2.el8_4.5 *
Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support RedHat open-vm-tools-0:11.3.5-1.el8_6.6 *
Red Hat Enterprise Linux 8.6 Telecommunications Update Service RedHat open-vm-tools-0:11.3.5-1.el8_6.6 *
Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions RedHat open-vm-tools-0:11.3.5-1.el8_6.6 *
Red Hat Enterprise Linux 8.8 Telecommunications Update Service RedHat open-vm-tools-0:12.1.5-2.el8_8.5 *
Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions RedHat open-vm-tools-0:12.1.5-2.el8_8.5 *
Red Hat Enterprise Linux 9 RedHat open-vm-tools-0:12.5.0-1.el9_6.2 *
Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions RedHat open-vm-tools-0:11.3.5-1.el9_0.6 *
Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions RedHat open-vm-tools-0:12.1.5-1.el9_2.5 *
Red Hat Enterprise Linux 9.4 Extended Update Support RedHat open-vm-tools-0:12.3.5-2.el9_4.1 *
Open-vm-tools Ubuntu devel *
Open-vm-tools Ubuntu esm-infra/focal *
Open-vm-tools Ubuntu jammy *
Open-vm-tools Ubuntu noble *
Open-vm-tools Ubuntu plucky *
Open-vm-tools Ubuntu upstream *

Potential Mitigations

References

Aqua Security is the largest pure-play cloud native security company, providing customers the freedom to innovate and run their businesses with minimal friction. The Aqua Cloud Native Security Platform provides prevention, detection, and response automation across the entire application lifecycle to secure the build, secure cloud infrastructure and secure running workloads wherever they are deployed.
Copyright © 2025 Aqua Security Software Ltd.   Privacy Policy | Terms of Use