Security News > 2025 > January > Broadcom Patches VMware Aria Flaws – Exploits May Lead to Credential Theft

Broadcom Patches VMware Aria Flaws – Exploits May Lead to Credential Theft
2025-01-31 05:49

Broadcom has released security updates to patch five security flaws impacting VMware Aria Operations and Aria Operations for Logs, warning customers that attackers could exploit them to gain elevated access or obtain sensitive information. The list of identified flaws, which impact versions 8.x of the software, is below - CVE-2025-22218 (CVSS score: 8.5) - A malicious actor with View Only Admin


News URL

https://thehackernews.com/2025/01/broadcom-patches-vmware-aria-flaws.html

Related news

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2025-01-30 CVE-2025-22218 Unspecified vulnerability in VMWare Aria Operations for Logs and Cloud Foundation
VMware Aria Operations for Logs contains an information disclosure vulnerability. A malicious actor with View Only Admin permissions may be able to read the credentials of a VMware product integrated with VMware Aria Operations for Logs
network
low complexity
vmware
7.7
7.7

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Vmware 148 11 231 263 102 607
Broadcom 91 5 137 171 71 384