Header injection vulnerability_CVE-2025-41250

8.5 / 10

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:L

Description

VMware vCenter contains an SMTP header injection vulnerability. A malicious actor with non-administrative privileges on vCenter who has permission to create scheduled tasks may be able to manipulate the notification emails sent for scheduled tasks.

Basic Information

ID CVE-2025-41250

Source vmware

Published Sep 29, 2025 at 17:44

Modified Sep 29, 2025 at 18:00

Affected Product

Vendor VMware

Product vCenter

Version 8.0

Affected Versions VMware vCenter 8.0
VMware vCenter 7.0
VMware Cloud Foundation 9.x.x.x
VMware Cloud Foundation 5.x
VMware Cloud Foundation 4.5.x
VMware Telco Cloud Platform 5.x, 4.x, 3.x, 2.x
VMware Telco Cloud Infrastructure 3.x, 2.x
VMware vSphere Foundation 9.x.x.x

CWE Classification

CWE-77

References

support.broadcom.com /web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36150

{
    "lastseen": "",
    "description": "VMware vCenter contains an SMTP header injection vulnerability.\u00a0A malicious actor with non-administrative privileges on vCenter who has permission to create scheduled tasks may be able to manipulate the notification emails sent for scheduled tasks.",
    "published": "2025-09-29T17:44:27.967Z",
    "modified": "2025-09-29T18:00:34.478Z",
    "type": "cve",
    "title": "Header injection vulnerability",
    "source": "vmware",
    "references": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36150",
    "id": "CVE-2025-41250",
    "bulletinFamily": "",
    "cwe": [
        "CWE-77"
    ],
    "cvelist": null,
    "sourceData": "VMware vCenter 8.0\nVMware vCenter 7.0\nVMware Cloud Foundation 9.x.x.x\nVMware Cloud Foundation 5.x\nVMware Cloud Foundation 4.5.x\nVMware Telco Cloud Platform 5.x, 4.x, 3.x, 2.x\nVMware Telco Cloud Infrastructure 3.x, 2.x\nVMware vSphere Foundation 9.x.x.x",
    "sourceHref": "",
    "cvss": {
        "score": 8.5,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:L",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "vCenter",
    "version": "8.0",
    "vendor": "VMware",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}