CVE-2025-22222

Name of the Vulnerable Software and Affected Versions VMware Aria Operations (affected versions not specified)

Description The issue is related to an information disclosure vulnerability in VMware Aria Operations. A malicious user with non-administrative privileges may exploit this vulnerability to retrieve credentials for an outbound plugin if a valid service credential ID is known. The vulnerability is associated with a lack of protection for service data, which could allow a remote attacker to disclose protected information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.