Vmware Telco Cloud Infrastructure
12 CVEs affecting Vmware Telco Cloud Infrastructure. Latest disclosed: 2026-02-25. Critical: 4, High: 4.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-41238 | Critical | 9.3 | 2025-07-15 | VMware ESXi, Workstation, and Fusion contain a heap-overflow vulnerability in the PVSCSI (Paravirtualized SCSI) controller that leads to an out of-bounds write… |
CVE-2025-41237 | Critical | 9.3 | 2025-07-15 | VMware ESXi, Workstation, and Fusion contain an integer-underflow in VMCI (Virtual Machine Communication Interface) that leads to an out-of-bounds write. A mal… |
CVE-2025-41236 | Critical | 9.3 | 2025-07-15 | VMware ESXi, Workstation, and Fusion contain an integer-overflow vulnerability in the VMXNET3 virtual network adapter. A malicious actor with local administrat… |
CVE-2025-22224 | Critical | 9.3 | 2025-03-04 | VMware ESXi, and Workstation contain a TOCTOU (Time-of-Check Time-of-Use) vulnerability that leads to an out-of-bounds write. A malicious actor with local admi… |
CVE-2025-41225 | High | 8.8 | 2025-05-20 | The vCenter Server contains an authenticated command-execution vulnerability. A malicious actor with privileges to create or modify alarms and run script actio… |
CVE-2025-41250 | High | 8.5 | 2025-09-29 | VMware vCenter contains an SMTP header injection vulnerability. A malicious actor with non-administrative privileges on vCenter who has permission to create sc… |
CVE-2026-22719 | High | 8.1 | 2026-02-25 | VMware Aria Operations contains a command injection vulnerability. A malicious unauthenticated actor may exploit this issue to execute arbitrary commands which… |
CVE-2025-41239 | High | 7.1 | 2025-07-15 | VMware ESXi, Workstation, Fusion, and VMware Tools contains an information disclosure vulnerability due to the usage of an uninitialised memory in vSockets. A… |
CVE-2025-41226 | Medium | 6.8 | 2025-05-20 | VMware ESXi contains a denial-of-service vulnerability that occurs when performing a guest operation. A malicious actor with guest operation privileges on a VM… |
CVE-2025-41227 | Medium | 5.5 | 2025-05-20 | VMware ESXi, Workstation, and Fusion contain a denial-of-service vulnerability due to certain guest options. A malicious actor with non-administrative privileg… |
CVE-2025-41241 | Medium | 4.4 | 2025-07-29 | VMware vCenter contains a denial-of-service vulnerability. A malicious actor who is authenticated through vCenter and has permission to perform API calls for g… |
CVE-2025-41228 | Medium | 4.3 | 2025-05-20 | VMware ESXi and vCenter Server contain a reflected cross-site scripting vulnerability due to improper input validation. A malicious actor with network access t… |