CVE-2025-41244 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	7.8 HIGH	LOCAL	LOW	LOW	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Base Score

CVSS 3.x

EPSS Score

Percentile: 69%

Affected Products (NVD)

Vendor	Product	Version
vmware	aria_operations	8.0 ≤ 𝑥 < 8.18.5
vmware	cloud_foundation	4.0 ≤ 𝑥 ≤ 5.2.2
vmware	cloud_foundation_operations	9.0
vmware	open_vm_tools	11.2.0 ≤ 𝑥 < 12.5.4
vmware	open_vm_tools	13.0.0
vmware	telco_cloud_infrastructure	2.2 ≤ 𝑥 ≤ 3.0
vmware	telco_cloud_platform	4.0 ≤ 𝑥 < 5.0.1
debian	debian_linux	11.0
vmware	tools	12.5.0 ≤ 𝑥 < 12.5.4
vmware	tools	13.0.0.0 ≤ 𝑥 < 13.0.5.0

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

open-vm-tools

bookworm	2:12.2.0-1+deb12u4 fixed
bookworm (security)	vulnerable
bullseye	vulnerable
bullseye (security)	2:11.2.5-2+deb11u5 fixed
forky	2:13.0.10-1 fixed
sid	2:13.0.10-1 fixed
trixie	2:12.5.0-2+deb13u1 fixed

Ubuntu Releases

Ubuntu Product

Codename

open-vm-tools

bionic	not-affected
focal	Fixed 2:11.3.0-2ubuntu0~ubuntu20.04.8+esm1 released
jammy	Fixed 2:12.3.5-3~ubuntu0.22.04.3 released
noble	Fixed 2:12.5.0-1~ubuntu0.24.04.2 released
plucky	Fixed 2:12.5.0-1ubuntu0.2 released
trusty	not-affected
xenial	not-affected

openSUSE / SLES Releases

openSUSE Product

Release

libvmtools-devel

suse enterprise desktop 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise desktop 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise server 15 SP2	11.3.5-150200.5.16.22.1 fixed
suse enterprise server 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise server 15 SP7	13.0.5-150600.3.21.1 fixed

libvmtools0

suse enterprise desktop 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise desktop 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise server 12 SP5	13.0.5-4.92.1 fixed
suse enterprise server 15 SP2	11.3.5-150200.5.16.22.1 fixed
suse enterprise server 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise server 15 SP7	13.0.5-150600.3.21.1 fixed

open-vm-tools

suse enterprise desktop 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise desktop 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise server 12 SP5	13.0.5-4.92.1 fixed
suse enterprise server 15 SP2	11.3.5-150200.5.16.22.1 fixed
suse enterprise server 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise server 15 SP7	13.0.5-150600.3.21.1 fixed

open-vm-tools-containerinfo

suse enterprise sap 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP5	13.0.0-150300.64.1 fixed

open-vm-tools-desktop

suse enterprise sap 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise server 12 SP5	13.0.5-4.92.1 fixed
suse enterprise server 15 SP2	11.3.5-150200.5.16.22.1 fixed
suse enterprise server 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP5	13.0.0-150300.64.1 fixed

open-vm-tools-salt-minion

suse enterprise desktop 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise desktop 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise server 12 SP5	13.0.5-4.92.1 fixed
suse enterprise server 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise server 15 SP7	13.0.5-150600.3.21.1 fixed

open-vm-tools-sdmp

suse enterprise desktop 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise desktop 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise sap 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise sap 15 SP7	13.0.5-150600.3.21.1 fixed
suse enterprise server 12 SP5	13.0.5-4.92.1 fixed
suse enterprise server 15 SP2	11.3.5-150200.5.16.22.1 fixed
suse enterprise server 15 SP3	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP4	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP5	13.0.0-150300.64.1 fixed
suse enterprise server 15 SP6	13.0.5-150600.3.21.1 fixed
suse enterprise server 15 SP7	13.0.5-150600.3.21.1 fixed

Red Hat Enterprise Linux Releases

Red Hat Product

Release

open-vm-tools

RHEL 8	0:12.3.5-2.el8_10.1 fixed
RHEL 8.4 AUS	0:11.2.0-2.el8_4.5 fixed
RHEL 8.6 AUS	0:11.3.5-1.el8_6.6 fixed
RHEL 8.6 E4S	0:11.3.5-1.el8_6.6 fixed
RHEL 8.6 TUS	0:11.3.5-1.el8_6.6 fixed
RHEL 8.8 E4S	0:12.1.5-2.el8_8.5 fixed
RHEL 8.8 TUS	0:12.1.5-2.el8_8.5 fixed
RHEL 9	0:12.5.0-1.el9_6.2 fixed

open-vm-tools-desktop

RHEL 8	0:12.3.5-2.el8_10.1 fixed
RHEL 8.4 AUS	0:11.2.0-2.el8_4.5 fixed
RHEL 8.6 AUS	0:11.3.5-1.el8_6.6 fixed
RHEL 8.6 E4S	0:11.3.5-1.el8_6.6 fixed
RHEL 8.6 TUS	0:11.3.5-1.el8_6.6 fixed
RHEL 8.8 E4S	0:12.1.5-2.el8_8.5 fixed
RHEL 8.8 TUS	0:12.1.5-2.el8_8.5 fixed
RHEL 9	0:12.5.0-1.el9_6.2 fixed

open-vm-tools-salt-minion

RHEL 8	0:12.3.5-2.el8_10.1 fixed
RHEL 8.8 E4S	0:12.1.5-2.el8_8.5 fixed
RHEL 8.8 TUS	0:12.1.5-2.el8_8.5 fixed
RHEL 9	0:12.5.0-1.el9_6.2 fixed

open-vm-tools-sdmp

RHEL 8	0:12.3.5-2.el8_10.1 fixed
RHEL 8.4 AUS	0:11.2.0-2.el8_4.5 fixed
RHEL 8.6 AUS	0:11.3.5-1.el8_6.6 fixed
RHEL 8.6 E4S	0:11.3.5-1.el8_6.6 fixed
RHEL 8.6 TUS	0:11.3.5-1.el8_6.6 fixed
RHEL 8.8 E4S	0:12.1.5-2.el8_8.5 fixed
RHEL 8.8 TUS	0:12.1.5-2.el8_8.5 fixed
RHEL 9	0:12.5.0-1.el9_6.2 fixed

open-vm-tools-test

RHEL 9

0:12.5.0-1.el9_6.2

fixed

Known Exploits!

https://blog.nviso.eu/2025/09/29/you-name-it-vmware-elevates-it-cve-2025-41244/

Common Weakness Enumeration

CWE-267 - Privilege Defined With Unsafe Actions
A particular privilege, role, capability, or right can be used to perform unsafe actions that were not intended, even when it is assigned to the correct entity.

References

http://support.broadcom.com/group/ecx/support-content-view/-/support-content/Security%20Advisories/VMSA-2025-0015--VMware-Aria-Operations-and-VMware-Tools-updates-address-multiple-vulnerabilities--CVE-2025-41244-CVE-2025-41245--CVE-2025-41246-/36149

http://www.openwall.com/lists/oss-security/2025/09/29/10

https://lists.debian.org/debian-lts-announce/2025/10/msg00000.html

https://blog.nviso.eu/2025/09/29/you-name-it-vmware-elevates-it-cve-2025-41244/

https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2025-41244