Actively Exploited in the Wild

This vulnerability is being actively exploited in the wild.

Primary

Context

VMware Aria Operations and VMware Tools Local Privilege Escalation Vulnerability

Vulnerability

Exploited

A local privilege escalation vulnerability has been identified in VMware Aria Operations and VMware Tools. This issue allows a malicious local actor with non-administrative privileges to escalate privileges to root on a virtual machine (VM) where VMware Tools is installed. The vulnerability can be exploited on VMs managed by Aria Operations with Software Development Management Platform (SDMP) enabled.

Impact

Exploitation of this vulnerability allows for local privilege escalation, enabling a user with non-administrative rights to gain root access on the affected VM.

Added: Sep 29, 2025, 5:23 PM

Updated: Oct 30, 2025, 5:51 PM

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

7.5

exploitability

5.0

remediation

0.0

relevance

0.6

threat

8.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

7.8

impact

7.5

exploitability

5.0

remediation

0.0

relevance

0.6

threat

8.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Actively Exploited in the Wild

VMware Aria Operations and VMware Tools Local Privilege Escalation Vulnerability

Vulnerability

Impact

Affected Products

VMware Aria Operations

VMware Tools

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating