Denial-of-service vulnerability

July 29, 2025 invoker category_cve

CVE Details

Basic Information

Title Denial-of-service vulnerability
Type cve
Published 2025-07-29T12:25:55.706Z
Modified 2025-07-29T13:24:08.243Z

Product Information

Vendor VMware
Product vCenter
Version 8.0

CVSS Information

Base Score 4.4 (MEDIUM)
Attack Vector CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:U/C:N/I:N/A:H

Affected Products

  • VMware vCenter 8.0
  • VMware vCenter 7.0
  • VMware Cloud Foundation 5.x, 4.5.x
  • VMware Telco Cloud Platform 5.x, 2.x
  • VMware Telco Cloud Infrastructure 2.x

Additional Information

CWE List CWE-754
Source vmware

Description

VMware vCenter contains a denial-of-service vulnerability. A malicious actor who is authenticated through vCenter and has permission to perform API calls for guest OS customisation may trigger this vulnerability to create a denial-of-service condition.

💭 Join the Security Discussion

🔒 Your email address will not be published. Required fields are marked *

⚠️ Please be respectful and constructive in your comments. Security discussions should remain professional.