rpm package
suse/open-vm-tools&distro=SUSE Linux Enterprise Module for Desktop Applications 15 SP7
pkg:rpm/suse/open-vm-tools&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Desktop%20Applications%2015%20SP7
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-41244 | — | KEV | < 13.0.0-150600.3.18.1 | 13.0.0-150600.3.18.1 | Sep 29, 2025 | VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability | |
| CVE-2025-22247 | Med | 6.1 | < 12.5.2-150600.3.12.1 | 12.5.2-150600.3.12.1 | May 12, 2025 | VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM. |
- affected < 13.0.0-150600.3.18.1fixed 13.0.0-150600.3.18.1
VMware Aria Operations and VMware Tools contain a local privilege escalation vulnerability. A malicious local actor with non-administrative privileges having access to a VM with VMware Tools installed and managed by Aria Operations with SDMP enabled may exploit this vulnerability
- affected < 12.5.2-150600.3.12.1fixed 12.5.2-150600.3.12.1
VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM.