Broadcom has released a security update for patching five security defects that affects VMware ARIA Operations and Logs ARIA operations, and the attackers can increase access or acquire confidential information. We are warning customers to exploit.
The identified flaws list that affect the 8.x of software is below.
CVE-2025-22218 (CVSS Score: 8.5) -It may be possible to read the qualification information of VMware products with only VIE. Malicious actors with non-control privileges may lead to any operation as an administrator via the saved cross-site scripting (XSS) attack CVE-2025-2220 (CVSS Score: 4.3). You may be able to inject scripts. Actor Logs API with non-control privileges to ARIA operations in ARIA operations may allow you to perform specific operations in the context of the administrator user CVE-2025-22221 (CVSS Score: 5.2) -VMware ARIA. The operation of the malicious actor log with the agent configuration CVE-2025-222222 (CVSS score: 7.7) may be able to insert a malicious script that can be executed in the victim’s browser. If you know the valid service qualification information ID, get this vulnerabilities to get outbound plug -in qualifications
Part of the MICHELIN CERT team to detect and report the Maxime Escourbiac of Maxime Escourbiac, Yassine Bengana and Quentin Ebel of Abicom, and to detect and report defects. It is noteworthy that the same team discovered the other two defects in the same product (CVE-2024-38832 and CVE-2024-38833) in late November 2024.
All vulnerabilities described above apply patches in VMware Aria operation and log version 8.18.3 ARIA operation. The virtualization service provider does not mention that these problems are abused in the wild.
This advisory warns that malicious actors may be weapons by malicious actors to acquire database access to advanced security defects in VMware Avi Load Balancer (CVE-2025-22217, CVSS Score: 8.6). It will be done a few days later.
Source link
