CVE-2025-41231

Description

VMware Cloud Foundation contains a missing authorisation vulnerability. A malicious actor with access to VMware Cloud Foundation appliance may be able to perform certain unauthorised actions and access limited sensitive information.

PUBLISHED Reserved 2025-04-16 | Published 2025-05-20 | Updated 2025-05-20 | Assigner vmware

Problem types

Missing Authorisation

References

support.broadcom.com/...l/content/SecurityAdvisories/0/25733

cve.org (CVE-2025-41231)

nvd.nist.gov (CVE-2025-41231)

Download JSON