轉發　國家資安資訊分享與分析中心 資安訊息警訊 NISAC-200-202511-00000021

[內容說明]
研究人員發現Broadcom VMWare存在本機提權(Local Privilege Escalation)漏洞(CVE-2025-41244)，已取得一般權限之本機端攻擊者可透過此漏洞於VM內提升至管理員權限。該漏洞已遭駭客利用，請儘速確認並進行修補。

[影響平台]
VMware Cloud Foundation Operations 9.x.x.x版本
VMware Tools 13.x.x.x、12.x.x及11.x.x版本
VMware Aria Operations 8.x、5.x、4.x、3.x及2.x版本

[建議措施]
官方已針對漏洞釋出修復更新，請參考官方說明進行更新，網址如下： https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149

[參考資料]
1. https://nvd.nist.gov/vuln/detail/CVE-2025-41244
2. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149

Forwarded from National Cybersecurity Information Sharing and Analysis Center: Cybersecurity Alert NISAC-200-202511-00000021

[Content Description]
Researchers have discovered a Local Privilege Escalation vulnerability (CVE-2025-41244) in Broadcom VMware. An attacker with normal privileges on the local machine can exploit this vulnerability to escalate privileges to administrator level within the VM. This vulnerability has already been exploited by hackers; please confirm and patch it as soon as possible.

[Affected Platforms]
VMware Cloud Foundation Operations versions 9.x.x.x
VMware Tools versions 13.x.x.x, 12.x.x, and 11.x.x
VMware Aria Operations versions 8.x, 5.x, 4.x, 3.x, and 2.x

[Recommended Actions]
An official patch has been released to fix the vulnerability. Please refer to the official instructions to update. The URL is as follows:
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149

[References]
1. https://nvd.nist.gov/vuln/detail/CVE-2025-41244
2. https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36149