Broadcom Fixes VMware Aria Flaws to Prevent Credential Theft
Broadcom Issues Crucial Security Updates for VMware Aria Operations
Broadcom has announced essential security updates to address five critical vulnerabilities affecting VMware Aria Operations and Aria Operations for Logs. These security flaws, if exploited, could allow attackers to gain unauthorized access or extract sensitive information from the affected systems. It is crucial for users of VMware Aria Operations version 8.x to implement these updates promptly to safeguard their data.
Overview of Identified Vulnerabilities
The vulnerabilities identified in VMware Aria Operations include:
- CVE-2025-22218 (CVSS score: 8.5): Users with View Only Admin permissions may access credentials from integrated VMware products.
- CVE-2025-22219 (CVSS score: 6.8): A non-administrative user could inject a malicious script, potentially leading to admin-level operations via a stored cross-site scripting (XSS) attack.
- CVE-2025-22220 (CVSS score: 4.3): Non-administrative users with network access may perform actions under the context of an admin user.
- CVE-2025-22221 (CVSS score: 5.2): Admin users could inadvertently execute a malicious script in a victim’s browser while deleting configurations.
- CVE-2025-22222 (CVSS score: 7.7): Malicious users may retrieve credentials for outbound plugins if they know a valid service credential ID.
Security Researchers Behind the Discovery
The vulnerabilities were reported by security experts Maxime Escourbiac from Michelin CERT, alongside Yassine Bengana and Quentin Ebel from Abicom, who are part of the Michelin CERT team. Notably, this team also identified two additional flaws (CVE-2024-38832 and CVE-2024-38833) in November 2024, highlighting their ongoing vigilance in cybersecurity.
Update Availability and Recommendations
All identified vulnerabilities have been patched in VMware Aria Operations and Aria Operations for Logs version 8.18.3. While Broadcom has not reported any active exploitation of these vulnerabilities, it is critical for users to update their systems immediately to mitigate potential risks.
Recent Security Alerts from Broadcom
This advisory follows Broadcom’s recent notification of another significant security flaw in VMware Avi Load Balancer (CVE-2025-22217, CVSS score: 8.6). This vulnerability could allow malicious actors to gain access to sensitive database information, further emphasizing the need for vigilance in software security.
For more detailed information on these vulnerabilities, visit the National Vulnerability Database or the official VMware Security Advisory.
Stay Informed
If you found this article informative, we encourage you to share your thoughts in the comments below. Don’t forget to follow us on Twitter and LinkedIn for more exclusive content and updates on cybersecurity news.