do son 
Critical vulnerabilities have been discovered in VMware Aria Operations and Logs, potentially allowing attackers to steal credentials and execute malicious scripts.
Broadcom has issued a security advisory detailing multiple vulnerabilities affecting VMware Aria Operations and Logs. These vulnerabilities range in severity from Important to Moderate, with the most severe potentially allowing attackers to gain access to sensitive information and execute malicious code.
One of the most critical vulnerabilities, identified as CVE-2025-22218 (CVSS 8.5), is an information disclosure vulnerability that could allow a malicious actor with “View Only Admin” permissions to steal credentials for a VMware product integrated with VMware Aria Operations for Logs. Another vulnerability, CVE-2025-22219, is a stored cross-site scripting vulnerability that could allow an attacker to inject malicious scripts and perform unauthorized actions.
Other vulnerabilities include a privilege escalation vulnerability (CVE-2025-22220) and another stored cross-site scripting vulnerability (CVE-2025-22221) in VMware Aria Operations for Logs, and an information disclosure vulnerability (CVE-2025-22222) in VMware Aria Operations.
The vulnerabilities impact the following VMware products:
| Product | Affected Versions | CVEs | Fixed Version |
|---|---|---|---|
| VMware Aria Operations for Logs | 8.x | CVE-2025-22218, CVE-2025-22219, CVE-2025-22220, CVE-2025-22221 | 8.18.3 |
| VMware Aria Operations | 8.x | CVE-2025-22222 | 8.18.3 |
| VMware Cloud Foundation | 5.x, 4.x | All above CVEs | KB92148 |
Broadcom urges users to update their VMware products to the latest versions as soon as possible.
Related Posts:
- VMware Aria Operations Hit By Multiple Vulnerabilities
- VMware fixes critical security bugs in Aria Operations for Networks
- Researcher releases PoC exploit for critical VMware Aria (CVE-2023-34039) bug
- Critical vulnerability in VMware Aria Operations for Logs
- Critical flaws affecting VMware Aria Operations for Networks
