The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has included a critical security vulnerability affecting Broadcom VMware Tools and VMware Aria Operations within its Known Exploited Vulnerabilities (KEV) catalog as of Thursday. This inclusion follows credible reports indicating that the flaw is currently being exploited in the wild, which heightens concerns for users and organizations reliant on these VMware products.
The vulnerability is cataloged as CVE-2025-41244, with a CVSS score of 7.8, categorizing it as high-severity. This indicates that attackers can potentially exploit this vulnerability to execute unauthorized actions, which could compromise the integrity and security of various systems leveraging these VMware solutions. Organizations that utilize VMware Tools or Aria Operations are urged to prioritize patching this flaw to mitigate the risk of exploitation and safeguard their networks.
👉 Pročitaj original: The Hacker News
