VMware Aria Operations 8.x < 8.18 HF 5 Privilege Escalation (VMSA-2025-0006)

high Nessus Plugin ID 233816

Synopsis

VMware Aria Operations running on the remote host is affected by a privilege escalation vulnerability.

Description

The version of VMware Aria Operations (formerly vRealize Operations) running on the remote host is 8.x prior to 8.18 HF 5. It is, therefore, affected by a privilege escalation vulnerability. A malicious actor with local administrative privileges can escalate their privileges to root on the appliance running VMware Aria Operations.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Upgrade to VMware Aria Operations version 8.18 HF 5 or later.

See Also

https://www.vmware.com/security/advisories/VMSA-2025-0006.html

Plugin Details

Severity: High

ID: 233816

File Name: vmware_aria_operations_VMSA-2025-0006.nasl

Version: 1.2

Type: remote

Family: Misc.

Published: 4/3/2025

Updated: 4/4/2025

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: High

Score: 7.4

CVSS v2

Risk Factor: Medium

Base Score: 6.8

Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C

CVSS Score Source: CVE-2025-22231

CVSS v3

Risk Factor: High

Base Score: 7.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: cpe:/a:vmware:vrealize_operations

Required KB Items: installed_sw/vRealize Operations Manager

Patch Publication Date: 4/1/2025

Vulnerability Publication Date: 4/1/2025

Reference Information

CVE: CVE-2025-22231

IAVA: 2025-A-0216

VMSA: 2025-0006