CVE-2025-22247

EUVD-2025-14280
VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM.
Link Following
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.1 MEDIUM
LOCAL
LOW
LOW
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:H/A:N
Awaiting analysis
This vulnerability is currently awaiting analysis.
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
Debian logo
Debian Releases
Debian Product
Codename
open-vm-tools
bookworm
2:12.2.0-1+deb12u4
fixed
bookworm (security)
2:12.2.0-1+deb12u3
fixed
bullseye
vulnerable
bullseye (security)
2:11.2.5-2+deb11u5
fixed
forky
2:13.0.10-1
fixed
sid
2:13.0.10-1
fixed
trixie
2:12.5.0-2+deb13u1
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
open-vm-tools
bionic
Fixed 2:11.0.5-4ubuntu0.18.04.3+esm4
released
focal
Fixed 2:11.3.0-2ubuntu0~ubuntu20.04.8
released
jammy
Fixed 2:12.3.5-3~ubuntu0.22.04.2
released
noble
Fixed 2:12.4.5-1~ubuntu0.24.04.2
released
oracular
Fixed 2:12.4.5-1ubuntu0.1
released
plucky
Fixed 2:12.5.0-1ubuntu0.1
released
trusty
not-affected
xenial
Fixed 2:10.2.0-3~ubuntu0.16.04.1+esm5
released
openSUSE logo
openSUSE / SLES Releases
openSUSE Product
Release
libvmtools-devel
suse enterprise desktop 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise desktop 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP4
12.5.2-150300.58.1
fixed
suse enterprise server 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP7
12.5.2-150600.3.12.1
fixed
libvmtools0
suse enterprise desktop 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise desktop 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP4
12.5.2-150300.58.1
fixed
suse enterprise server 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP7
12.5.2-150600.3.12.1
fixed
open-vm-tools
suse enterprise desktop 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise desktop 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP4
12.5.2-150300.58.1
fixed
suse enterprise server 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP7
12.5.2-150600.3.12.1
fixed
open-vm-tools-containerinfo
suse enterprise server 15 SP4
12.5.2-150300.58.1
fixed
open-vm-tools-desktop
suse enterprise server 15 SP4
12.5.2-150300.58.1
fixed
open-vm-tools-salt-minion
suse enterprise desktop 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise desktop 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP4
12.5.2-150300.58.1
fixed
suse enterprise server 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP7
12.5.2-150600.3.12.1
fixed
open-vm-tools-sdmp
suse enterprise desktop 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise desktop 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise sap 15 SP7
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP4
12.5.2-150300.58.1
fixed
suse enterprise server 15 SP6
12.5.2-150600.3.12.1
fixed
suse enterprise server 15 SP7
12.5.2-150600.3.12.1
fixed
Red Hat logo
Red Hat Enterprise Linux Releases
Red Hat Product
Release
open-vm-tools
RHEL 8
0:12.3.5-2.el8_10.2
fixed
RHEL 9
0:13.0.0-1.el9_7.1
fixed
open-vm-tools-desktop
RHEL 8
0:12.3.5-2.el8_10.2
fixed
RHEL 9
0:13.0.0-1.el9_7.1
fixed
open-vm-tools-salt-minion
RHEL 8
0:12.3.5-2.el8_10.2
fixed
RHEL 9
0:13.0.0-1.el9_7.1
fixed
open-vm-tools-sdmp
RHEL 8
0:12.3.5-2.el8_10.2
fixed
RHEL 9
0:13.0.0-1.el9_7.1
fixed
open-vm-tools-test
RHEL 9
0:13.0.0-1.el9_7.1
fixed
Common Weakness Enumeration
References
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25683
http://www.openwall.com/lists/oss-security/2025/05/12/2
http://www.openwall.com/lists/oss-security/2025/05/13/2
http://www.openwall.com/lists/oss-security/2025/09/24/3
http://www.openwall.com/lists/oss-security/2025/09/25/3
http://www.openwall.com/lists/oss-security/2025/09/25/5
http://www.openwall.com/lists/oss-security/2025/09/26/1
https://lists.debian.org/debian-lts-announce/2025/05/msg00017.html