CVE-2025-41225 HIGH

CVE-2025-41225: VMware vCenter Server authenticated command-execution vulnerability

Vendor Vmware

Product vCenter Server

Weakness CWE-78

Published May 20, 2025

Last update June 24, 2025

View on NVD All CVEs

CVSS base score

8.8/10

Attack vector Local

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H

What the vulnerability does

01Description

The vCenter Server contains an authenticated command-execution vulnerability. A malicious actor with privileges to create or modify alarms and run script action may exploit this issue to run arbitrary commands on the vCenter Server.

Key dates

02Disclosure timeline

May 20, 2025 CVE published

June 24, 2025 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-41225 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/78.html

Related vulnerabilities

Identifiers

CVE CVE-2025-41225

CWE CWE-78

CVSS 8.8 / HIGH

Affected versions

Vendor Vmware

Product vCenter Server

Affected ≥ 8.0 and < 8.0 U3e

Vendor Vmware

Product vCenter Server

Affected ≥ 7.0 and < 7.0 U3v

Vendor Vmware

Product Cloud Foundation

Affected 5.x, 4.5.x

Vendor Vmware

Product Telco Cloud Platform

Affected 5.x, 4.x, 3.x, 2.x

Vendor Vmware

Product Telco Cloud Infrastructure

Affected 3.x, 2.x

CVE-2025-41225: VMware vCenter Server authenticated command-execution vulnerability

01Description

02Disclosure timeline

03References

04Related CVE