1. OpenSSH vulnerabilities "CVE-2025-41244,CVE-2025-41245, CVE-2025-41246" have been identified in Aria Operations nodes and VMware Tools.
   
   
2. Running older versions of VMware Aria Operations or VMware Tools, the system may remain exposed to a privilege escalation vulnerability when the Service Discovery Management Pack (SDMP) is active.

8.18.x

The vulnerability exists in specific versions of VMware Aria Operations (prior to 8.18.5) and VMware Tools (prior to 12.5.4 / 13.0.5). When SDMP is enabled, a local user on a virtual machine may gain elevated privileges due to improper handling of access permissions within the affected components.

1. For CVE-2025-41244 and CVE-2025-41245: Please upgrade VMware Aria Operations to version 8.18 HF8 (Refer to the security advisory for more details, which can be found in the additional information section)
   
   
2. For CVE-2025-41246: Refer to the official security advisory.

Further details regarding these updates, including the security advisory, can be found in the additional information section.

Note: Alternatively, deactivating the SDMP pack in your environment will eliminate the vulnerability to CVE-2025-41244 (We do not approach this method from our side, as the specifications are entirely dependent upon the specific requirements of the environment.)

VMSA-2025-0015: VMware Aria Operations and VMware Tools updates address multiple vulnerabilities (CVE-2025-41244,CVE-2025-41245, CVE-2025-41246)