How to fix CVE-2025-41244?

Within 24 hours: Identify all affected systems and apply vendor patches immediately. Monitor vendor channels for patch availability.

Is Aria Operations affected by CVE-2025-41244?

CVE-2025-41244 presents notable security risk rated CVSS 7.8. Exploitation could compromise the security of affected deployments. This vulnerability is actively exploited in the wild (KEV-listed) and requires immediate remediation. Immediate patching is required per CISA KEV mandate.

CVE-2025-41244

HIGH

2025-09-29 [email protected]

7.8

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Patch Released

Apr 06, 2026 - 02:30 nvd

Patch available

Analysis Generated

Mar 28, 2026 - 19:14 vuln.today

Added to CISA KEV

Nov 06, 2025 - 13:58 cisa

CISA KEV

PoC Detected

Nov 06, 2025 - 13:58 vuln.today

Public exploit code

CVE Published

Sep 29, 2025 - 17:15 nvd

HIGH 7.8

Description

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability to escalate privileges to root on the same VM.

Analysis

VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. Actively exploited in the wild (cisa kev) and public exploit code available.

Technical Context

This vulnerability is classified under CWE-267. VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability to escalate privileges to root on the same VM. Affected products include: Vmware Aria Operations, Vmware Cloud Foundation, Vmware Cloud Foundation Operations, Vmware Open Vm Tools, Vmware Telco Cloud Infrastructure.

Affected Products

Vmware Aria Operations, Vmware Cloud Foundation, Vmware Cloud Foundation Operations, Vmware Open Vm Tools, Vmware Telco Cloud Infrastructure.

Remediation

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Apply vendor patches when available. Implement network segmentation and monitoring as interim mitigations.

Priority Score

109

Low Medium High Critical

KEV: +50

EPSS: +0.4

CVSS: +39

POC: +20

Vendor Status

CVE-2025-41244 vulnerability details – vuln.today

Back

CVE-2025-41244

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

CVE-2025-41244

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Technical Context

Affected Products

Remediation

Priority Score

Vendor Status

Share

External POC / Exploit Code