vmdaube

Blog Posts about VMware | Home Assistant

VMware Good 2 know [CW03]

Product Releases

ESXi8.0 u3h12/16DownloadRelease Notes
vCenter8.0 u3h12/16DownloadRelease Notes
vSphere Supervisor8.0 u3h12/16Release Notes
NSX4.2.3.212/15Release Notes

vSphere 8 Timeline

Launched in October 2022, vSphere 8 revolutionized hardware utilization through the Distributed Services Engine for DPUs and the vSAN Express Storage Architecture (ESA). Subsequent updates focused on operational improvements, such as „Configuration Profiles“ and enhanced lifecycle management, culminating in Update 3 with optimizations for AI workloads. Parallel to this, VMware Cloud Foundation (VCF) 5 was released, utilizing vSphere 8 as its technological core and integrating it with vSAN and NSX into a comprehensive solution. VCF 5 successively adopted innovations like vSAN ESA to provide them centrally and automatically via the SDDC Manager. Together, these products form a powerful cloud platform, but the architectural shifts introduce new levels of complexity. Using unsupported software carries significant risks. Security vulnerabilities remain unpatched, making systems more susceptible to attacks and there are no further technical updates or support available. This can result in data loss, system outages and potentially high costs due to cyberattacks or legal implications. Upgrading to VCF 9 is not only an investment in
the future but also a safeguard against the risks posed by outdated software.

KB Articles

Some new and updated KB articles

SubjectID
NSX preparation failed on ESXi host due to associated stale logical ports to the host424917
No alarm raised for Tier-0 or Tier-1 gateway failover after Edge vMotion.424813
VCF Automation SFTP Configuration failure on VCF Fleet Management : Error Code: LCMVMSP10035424785
Unable to apply NSX vDefend Firewall license on VCF 9.0424676
Unable to access the Aria Automation UI after upgrading to a later 8.18.x version424674
vCenter missing from License Management in VCF Operations424630
vMotion fails after rebuilding vCenter Server424550
vMotion with vGPU fails Compatibility Check424501
The NTP service on the ESXi host does not start according to the startup policy.424407
A VM will not boot with a virtual disk that has a missing VMFS flat file.424371
Network interruptions in Virtual Machines424337
Generating live core dump for vmx424305
Changing the root password via the UI fails with „LCMCOMMON80050 BAD PASSWORD“424256
Changing the root password via the UI fails with „LCMCOMMON80050 Password has been already used. Choose another.“424248
vCenter 9.0 compatibility with mixed ESXi version on cluster424129
How to shutdown HCX Manager, IX, and NE424115

OnSite Events

Incl. VMUG User/cons

VMUG Connect – AmsterdamMarch 17-19 
VMUG Connect – MinneapolisApril 07-09
VMUG Connect – TorontoMay 12-14
VMUG Connect – DallasJune 09-11
VMUG Connect – OrlandoOctober 20-22
Explore Las Vegas 2026 (Save the date)week of August 31
Local VMUG Events Overview

TAM Lab | Podcast | Webinar | Blog Posts

Podcasts , Blogs and Webinars published last week

Become an Explore Insider | What’s New in 2026
VMware Explore
Explore
Curious about VMware Explore in 2026? Join our community of Explore Insiders and be first in line to get the new announcements on VMware Explore events. Get fresh content, member perks, and the latest intel. Become an Insider today.
2026 Security Forecast: The Changing Face of Virtualization Security
VMUG Webcast
Webinar
The virtualization landscape is evolving—and so are the threats and technologies that shape it. Join Austin Gadient, CTO and Cofounder of Vali Cyber, for a forward-looking exploration of how virtualization security will continue transforming in 2026. Drawing from industry research and real-world defense data, Austin will discuss emerging trends in hypervisor protection, AI workload isolation, and compliance-driven security models. Attendees will gain a clear view of where the market is heading, what challenges to expect, and how to build resilient, preemptive defense strategies for virtualization environments.

VMware Good 2 know [CW45]

KB Articles

Some new KB articles

SubjectID
After environment shutdown and restart: vSphere DRS functionality was impacted due to unhealthy state vSphere Cluster services caused by the unavailability of vSphere Cluster Service VMs.417645
ERROR: ‚LCMVROPSSYSTEM29002′, message:’VMware Aria Operations collector group operation failure‘ while performing inventory sync on Aria Suite LCM.417641
„File VMNAME-000000#.vmdk was not found Failed to start the virtual machine“ error after VM disk consolidation417638
Resetting GRUB password on NSX Manager Appliance when password is unknown417635
Troubleshooting Port Mirroring: „Encapsulated Remote Mirroring (L3) Source“ and „Remote L3 Span“417621
SDDC Health check keeps failing417610
False positives in compliance benchmarks417609
Pre-Update System validation error417590
ESXi host will not reconnect to vCenter after an upgrade from 6.7 to 7.0.3 to 8.0.3 and fails at 80%417531
The Preview pane in the LDAP configuration for Aria Config / RaaS does not display users or groups417518
Action run failed with following error: „HTTP Error 403: Forbidden“‚ when deploying DSM 9.0.1 DB via Aria Automation417514
Failed to deploy OVF package. Cause: A general system error occurred: Transfer failed: Invalid response code: 407417436
Aria Operations shows „Error – not receiving data“ for AVI Integration417433
Unable to install Telegraf for application monitoring417394
ESXi host is unable to enter maintenance mode with vCLS vm not powering off417364
ESXi Host DomainMembershipStatus Shows „Not OK“ Intermittently and Domain User Login Are Slow or Fail417358
Changing the vSAN Snapshot Service Appliance root password417275
After upgrading ESXI host from 7 to 8 it takes a long time to connect to network416873
vSAN 8 Compatibility Alert for Dell PERC H730 Controller416752
Post ESXi reinstallation, migration of management vmk from standard switch to DVS failing416743

OnSite Events

Incl. VMUG User/cons

VMUG Connect – AmsterdamMarch 17-19 
VMUG Connect – MinneapolisApril 07-09
VMUG Connect – TorontoMay 12-14
VMUG Connect – DallasJune 09-11
VMUG Connect – OrlandoOctober 20-22
Explore Las Vegas 2026 (Save the date)week of August 31
Local VMUG Events Overview

TAM Lab | Podcast | Webinar | Blog Posts

Podcasts , Blogs and Webinars published last week

VMUG Connect is expanding in 2026
VMUG
Event
VMUG Connect is expanding! In 2026, we’re delivering more of what you love: deeper technical dives, richer discussions, and powerful in-person connections to five locations. This is where progress is powered by community, and where VMware professionals around the globe come together to drive what’s next.
vCommunity Management Pack for VCF Operations
VMUG
Blogpost
Over the years, we’ve had many customers looking for visibility into more advanced ESXi Host and VM properties (beyond those already being captured by VCF Operations), so we started there.  Broadcom Technical Account Manager Onur Yuzseven has been leading the development effort of a Management Pack for VCF Operations called the VCF Operations vCommunity Management Pack.  
It’s Never Too Late to Become a vExpert!
VMware Cloud Foundation
vExpert
If you’re looking at the calendar and thinking ‘I didn’t do enough this year,’ you might feel it’s too late to start contributing to the community. It’s never too late to become a vExpert, and let me explain. If you start today on one or some of the activities described later in this article, you can still build a strong application for the 2026 vExpert program. For example, writing 3 to 5 well-written, in-depth articles on how to do memory tiering, or telling your story how moving back to on-prem reduced your IT spend, shows a significant commitment to the community.
Enterprise customers can now deploy NVIDIA Run:ai on VMware Cloud Foundation
VMware Cloud Foundation
Blogpost
Deploying NVIDIA Run:ai on VCF empowers enterprises to build scalable, secure, and efficient AI platforms. Whether starting fresh or enhancing existing deployments with VKS, customers gain flexibility, performance, and the enterprise-grade features they depend on.
VCF allows your enterprise to focus on accelerating AI development and ROI, not on the low-level, high-risk business of building and managing infrastructure. It provides the automated, resilient, and secure foundation that production AI workloads demand, letting NVIDIA Run:ai do what it does best – maximize GPU utilization.
Auditing ESX DCUI Logins
williamlam.com/
Blogpost
For troubleshooting purposes, users may need to access the ESXi Direct Console User Interface (DCUI), either remotely through an out-of-band system like an iDRAC or iLO, or directly from the physical server.
What do I do after a vSAN Stretched Cluster Site Takeover?
yellow-bricks.com/
Blogpost
Over the last couple of months, various new vSAN features were announced. Two of those features are around the Stretched Cluster configuration, and have probably been the number 1 feature request for a few years. Now that we have Site Takeover and Site Maintenance functionality available, I am starting to get some questions about the impact of them, and in particular, the Site Takeover functionality is raising some questions.
FAQ – VMware Cloud Foundation Certifications
VMware Cloud Foundation
FAQ
Broadcom’s VMware Cloud Foundation (VCF) certifications are designed to prepare IT professionals to build and manage modern private cloud environments using VMware technologies. These certifications validate both theoretical knowledge and hands-on skills across the VMware vSphere Foundation and the broader VMware Cloud Foundation stack, including Compute, Network, Storage, Automation, and Kubernetes. With role-based paths for administrators, architects, and support professionals, VMware Cloud Foundation certifications help I.T. pros stay competitive and aligned with evolving private cloud infrastructure trends.

VMware Security Advisories History 2025

VMSARelease DateProductsLevelCVSSv3
VMSA-2025-00162025-09-29– vCenter – NSXHigh7.5-8.5
VMSA-2025-0015.12025-09-29– Aria Operations- VMware ToolsHigh4.9-7.8
VMSA-2025-00142025-07-29vCenterMedium4.4
VMSA-2025-00132025-07-15 – ESXi- Workstation- Fusion- ToolsCritical6.2 – 9.3
VMSA-2025-00122025-06-04NSXHigh5.9 – 7.5
VMSA-2025-00112025-05-22Avi Load BalancerMedium6.8
VMSA-2025-00102025-05-20– VMware Fusion- VMware vCenter Server- VMware vSphere ESXi- VMware WorkstationHigh4.3 – 8.8
VMSA-2025-00092025-05-20VMware Cloud FoundationHigh7.3 – 8.2
VMSA-2025-00082025-05-12Aria AutomationHigh8.2
VMSA-2025-00072025-05-12VMware ToolsMedium6.1
VMSA-2025-00062025-04-01Aria OperationsImportant7.8
VMSA-2025-00052025-03-25– VMware ToolsImportant7.8
VMSA-2025-00042025-03-04– VMware ESXi- Workstation- VMware FusionCritical7.1 – 9.3
VMSA-2025-00032025-01-30– Aria Operations for logs- Aria OperationsHigh5.2-8.5
VMSA-2025-00022025-01-28– Avi Load BalancerHigh8.6
VMSA-2025-00012025-01-07– Aria AutomationMedium4.3

Product Lifecycle

Lifecylce Overview until End of Year

ProductVersionEOL
Fusion <= 13.6.417.11.2025
Fusion Pro (for personal Use)<= 13.6.117.11.2025
Workstation Player<= 17.6.417.11.2025
Workstation Pro<= 17.6.417.11.2025
Workstation Pro for Linux<= 17.6.417.11.2025
Workstation Pro for Personal Use (Linux)<= 17.6.117.11.2025
Workstation Pro for Personal Use (Windows)<= 17.6.117.11.2025
Workstation Pro for Windows<= 17.5.117.11.2025
VKr1.3128.11.2025
HCX4.11.124.12.2025
AVI Kubernetes Operator12.2.131.12.2025
Aria Automation Config8.17.031.12.2025

VMware Good2know [CW40]

Product Releases 

Skyline Health Diagnostic4.0.1009/26DownloadRelease Notes
Aria Suite Lifecycle Manager8.18 P509/29Release Notes
Aria Operations for Logs8.18.509/29Release Notes
Aria Orchestrator8.18.109/29Release Notes
Remote Console13.0.109/29Release Notes
Data Services Manager9.0.109/29Release Notes
HCX4.11.309/29Release Notes
Live Site Recovery9.0.409/29Release Notes
vSphere Replication9.0.409/29Release Notes

VMware Security Advisories History 2025

VMSARelease DateProductsLevelCVSSv3
VMSA-2025-00162025-09-29– vCenter – NSXHigh7.5-8.5
VMSA-2025-00152025-09-29– Aria Operations- VMware ToolsHigh4.9-7.8
VMSA-2025-00142025-07-29vCenterMedium4.4
VMSA-2025-00132025-07-15 – ESXi- Workstation- Fusion- ToolsCritical6.2 – 9.3
VMSA-2025-00122025-06-04NSXHigh5.9 – 7.5
VMSA-2025-00112025-05-22Avi Load BalancerMedium6.8
VMSA-2025-00102025-05-20– VMware Fusion- VMware vCenter Server- VMware vSphere ESXi- VMware WorkstationHigh4.3 – 8.8
VMSA-2025-00092025-05-20VMware Cloud FoundationHigh7.3 – 8.2
VMSA-2025-00082025-05-12Aria AutomationHigh8.2
VMSA-2025-00072025-05-12VMware ToolsMedium6.1
VMSA-2025-00062025-04-01Aria OperationsImportant7.8
VMSA-2025-00052025-03-25– VMware ToolsImportant7.8
VMSA-2025-00042025-03-04– VMware ESXi- Workstation- VMware FusionCritical7.1 – 9.3
VMSA-2025-00032025-01-30– Aria Operations for logs- Aria OperationsHigh5.2-8.5
VMSA-2025-00022025-01-28– Avi Load BalancerHigh8.6
VMSA-2025-00012025-01-07– Aria AutomationMedium4.3

Product Lifecycle

Lifecylce Overview until End of November
ProductVersionEOL
Site Recovery<= 8.8.0.311.10.2025
vSphere Replication<= 8.8.0.311.10.2025
VMware Tools11.2.015.10.2025
VMware Tools11.2.515.10.2025
VMware Tools11.2.615.10.2025
Aria Operations<= 8.17.231.10.2025
Aria Operations for Logs<= 8.16.131.05.2025
VKr1.3128.11.2025

KB Articles

Some new and updated KB articles
SubjectID
Disabling PMem via ESXi when there is no server BIOS option412955
How to Disable „dynamicruleset“ Firewall Rule on ESXi Host412954
vSAN Witness Appliance “Evaluation” License Expiring on Aug 20, 2025, in VCF 9.0412947
Hosts in a 2 node stretched cluster fail to enter maintenance mode with ‚Full Data Migration‘412918
Check if Service Discovery Management Pack (SDMP) is enabled412871
Users are not able to login as certificate has expired VMware Identity Manager (formerly Workspace Access)412868
ESXi host showing as ’not responding‘ intermittently in vCenter.412851
Understanding and Resetting Distributed Firewall (DFW) Rule Statistics in NSX-T412847
After restarting ESXi, the template was migrated to the failover host.412812
Multiple ESXi hosts dropping many packets – Rx packet drops – Cisco UCS servers412616
Upgrading vCenter from a USB image of the ISO is not supported412578
A specific virtual machine was restarted by vSphere HA.412509
VCF Automation login throws „Authentication Error missing_verfier“ error when logging in412458
ESXi is not able to connect with VASA Provider due to TCP Failure412434
Host is down after changing NIC aliases412410
Windows 11 VMs are unable to boot after upgrading from ESXi 8.0.3d to 8.0.3f412400
Hosts with mismatched NTP configuration alert in vCenter Skyline Health412393
PSOD on Cisco servers, when NFNIC 5.0.0.46 is in use412357
How to Create a vTPM-Enabled Virtual Machine on a Host Without a physical TPM412270
NSX UI tool Traceflow shows „Dropped by IP“412190
VCF Operations For Networks configuration best practice.412160
Impact of the fix for 『ESXi fails to boot on systems with more than 512 logical CPUs in one NUMA node』412076
„A general system error occurred: Image is not valid. Software Solution com.vmware.vsphere-wcp with version 9.0.1.##.#.#-######## cannot be found in depot“, Image authoring in vLCM may fail even when the corresponding depots are imported into vLCM412074

OnSite Events

Incl. VMUG User/cons

Explore On Tour – Paris (Registration now open)10/17
VMUG User/con Cincinnati 10/22
Explore On Tour – Sydney (Registration now open)10/27
Explore On Tour – Tokyo (Registration now open)10/29
VMUG User/con Washington D.C.11/05
Explore On Tour – Frankfurt (Registration now open)11/11-12
Explore Las Vegas 2026 (Save the date)week of August 31
Local VMUG Events Overview

TAM Lab | Podcast | Webinar | Blog Posts

Podcasts , Blogs and Webinars published last week

VCF Demystified — Breaking Down the Barriers, Your Questions Answered
Architect’s Edge Live: 2-hour Ask Me Anything Expert Panel
Webinar
Join us for a special 2-hour Architect’s Edge Live AMA (Ask Me Anything) + Expert Panel, built to turn uncertainty into clarity. You’ll get:Live answers to your toughest adoption questions — no scripts, no fluff.Insights from specialists who have navigated greenfield, brownfield, and hybrid approaches.Real-world examples showing how organizations overcame perceived. blockers in areas like storage choice, NSX integration, operational security, and multi-site scale.Practical tips to avoid hidden pitfalls and accelerate time-to-value.Christopher Kusek | William Lam | John Nicholson | Bob Plankers | Chris McCain | Brock  Peterson | Jon Schulz | Vincent Riccio |  Victoria Gimma | Hersey Cartwright | Moe Ziaee | Eric Gray | Steve Ngo | Renee White | Shawn Kelly | Plus other special guest panelists!
The Architect’s Edge: VMware News and VCF Insights – September 2025
The Architect’s Edge
News
This month’s edition is packed with updates, milestones, and urgency — and yes, we deliberately held off on publishing until today so we could bring you the fresh news of VCF 9.0.1 and Aria 8.18.5 hot off the press.
Stream VMware Explore Sessions Now, On-DemandVMware ExploreVMware Explore
Good news: The VMware Explore 2025 in Las Vegas Video Library is now open for all! Tap into a discovery powerhouse with on-demand sessions anytime, on-demand.
DSM 9.0.1 – New Microsoft SQL Server enhancements [Part 1]
cormachogan.com
Blogpost
Whilst Microsoft SQL Server is still in technical preview in Data Services Manager 9.0.1, our team continues to release significant enhancements for our customers as we gravitate towards full support. As I mentioned in the DSM 9.0.1 overview post, this release includes the ability to specify […]
How many VMware Cloud Foundation Instances can a VCF Fleet support?
williamlam.com
Blogpost
With the release of VMware Cloud Foundation (VCF) 9.0, a new architectural construct has been introduced called a VCF Fleet. This brings centralized fleet management and provides modern workload consumption across multiple VCF instances, all managed through a single deployment of VCF Automation [..]

Explore 2025 – Las Vegas [Recap]

The General Session from VMware Explore 2025 in Las Vegas
The General Session from VMware Explore 2025 in Las Vegas showcases exciting new advancements in private cloud, AI and app delivery. Hear directly from Broadcom leaders, VMware experts and trailblazing customers as they share real-world insights on how to better run, scale and secure your enterprise workloads.

The General Session from VMware Explore 2025 in Las Vegas
The General Session from VMware Explore 2025 in Las Vegas showcases exciting new advancements in private cloud, AI and app delivery. Hear directly from Broadcom leaders, VMware experts and trailblazing customers as they share real-world insights on how to better run, scale and secure your enterprise workloads.

Missed the general session with
Hock Tan and other leaders?
Watch the replay. 🎥


Office Recap from the VMware Blog

Day 1

Day 1 of VMware Explore 2025 in Las Vegas kicked off with visionary keynotes, unveiling bold strategies and the latest innovations shaping the future of multi‑cloud.
140 sessions across all four tracks, endless hallway conversations, and a few “just one more coffee” moments with the community to keep the pace.
[Read more] | [Youtube]

Day 2

This morning’s general session was one of the major highlights of the week, with Broadcom leaders, VMware experts, and innovative customers showcasing the latest in private cloud, AI, and app delivery.
The key message? VMware Cloud Foundation (VCF) 9.0 is designed to help enterprises optimize, scale, and secure workloads in today’s complex cloud environment. 
[Read more] | [Youtube]

Day 3

Day 3 Highlights ranged from the thrilling Odyssey Tournament to certifications, letting participants experience innovation firsthand.
Today brought an action-packed schedule with 56 breakout sessions, 17 Booth Theater sessions, 18 Meet the Expert Roundtables, 16 Quick Talks, and 13 Hands-on Labs Expert-led Workshops. Add in the 40 demos held at the VMware by Broadcom booth this week, and attendees had no shortage of opportunities to expand their skills, test new features, and connect with experts.
[Read more] [Youtube]

Day 4

Day 4 wrapped up VMware Explore 2025 in Las Vegas with over 400 sessions, hands‑on labs, and expert talks showcasing the future of private AI and VMware Cloud Foundation 9.0. Attendees connected, earned certifications, and explored innovations across cloud, AI, networking, and security.
The momentum continues with Explore on Tour bringing curated content and labs to cities worldwide.
[Read more]

Post-Event Recap

That’s a wrap on VMwareExplore 2025 in Las Vegas. 400+ sessions, endless innovation, and a community that keeps growing stronger.


VMware Explore 2025 Live Recap with Six Five on The Road with Hock Tan und Paul Turner

At VMware Explore 2025, host Daniel Newman, CEO and Chief Analyst at The Futurum Group, is joined by Broadcom’s Hock Tan, President and CEO, for a conversation on the highlights from his general session keynote. This session focuses on how VMware Cloud Foundation 9.0 is influencing enterprises both large and small, and how it is unifying IT practitioners and developers by addressing and eliminating the “three points of friction.”

He also joined by Broadcom’s Paul Turner, Vice President, VCF Products, for a conversation on customer momentum around VMware Cloud Foundation (VCF) and how Broadcom is influencing the next generation of private clouds by providing infrastructure at the speed of the developer, enabling Private AI as a Service, and advancing cyber resilient data strategies.


Top Announcements

VMware Private AI Services will become a standard component of VCF 9.0

At VMware Explore 2025, Broadcom announced VMware Private AI Services will become a standard component of VMware Cloud Foundation 9.0, making VCF an AI native platform. With VCF 9.0 now generally available, customers can adopt a unified, AI native platform for secure, modern private cloud infrastructure at scale.
More about Private AI:Foundations of Private AI – Episode 1 – IntroductionNew Innovations from Broadcom with NVIDIAExciting News for Private AI at VMware Explore 2025Introducing VCF Intelligent AssistNew VCF Private AI Services FeaturesNew Integrations with NVIDIA and AMD

VMware Cloud Foundation Elevates Cyber Resilience, Compliance, and Security for the Modern Private Cloud

The new VCF Advanced Cyber Compliance service delivers continuous compliance enforcement, automated cyber recovery, and enhanced platform security — tackling threats from ransomware to AI‑specific attack surfaces. Upgrades to VMware vDefend and Avi Load Balancer add Zero Trust protections for AI workloads, advanced threat detection, post‑quantum cryptography, and stronger web‑level defenses, simplifying security while closing critical gaps.
More about vDefend: Exploring VMware Cloud Foundation: VMware vDefend (Webinar Serie) Explore Sessions: Demystifying VMware vDefend Distributed Security Within VMware Cloud Foundation [NSLB1076LV]Security Reference Design for VMware Cloud Foundation [NSLB1836LV]VMware vDefend Distributed Firewall Operational Overview [NSLB1623LV]Building Secure Private AI Deep Dive [INVB1432LV]
More about AVI Load Balancer: Explore Sessions: Avi Load Balancer integration with VCF 9: Driving Private Cloud to New Heights [NSLB1723LV]Self-Service Automation with VMware Avi Load Balancer [NSLB1194LV]

VMware Tanzu Delivers Speed, Security with AI-Ready Data and Application Platform to Drive Agentic AI Innovation

We introduced VMware Tanzu Data Intelligence and Tanzu Platform 10.3 at VMware Explore 2025, delivering a unified, AI‑ready data lakehouse and enhanced application platform for faster, more secure GenAI innovation. Tanzu Data Intelligence offers low‑latency, multimodal data access with built‑in governance, vector search, and real‑time analytics to power next‑gen AI apps. Tanzu Platform 10.3 adds advanced fleet management, transparent security dashboards, AI model controls, and modernization tools — helping enterprises accelerate AI adoption while keeping costs predictable≠≠
More about Tanzu Data IntelligenceUnify Your Data to Accelerate AI Application Delivery with Tanzu Data IntelligenceTanzu Data Intelligence Features
More about Tanzu Platform 10.3Powering the Next Generation of AI Applications with Tanzu Platform 10.3

VMware Good2know [CW34]

VMware Good2Know is back! After a few weeks of vacation and a mountain of to-dos, the VMware newsletter returns with fresh updates, insights, and tips to keep you in the loop. Stay tuned for what’s new and noteworthy in the VMware universe.

VMware Explore

Las Vegas

Can’t attend in person? Our live broadcast will take you there. Don’t miss the general session streaming live on Tuesday, August 26 from 9:00 – 10:00 AM PDT.
Get notified when we go live. Sign up for the VMware Explore Insider newsletter for live broadcast reminders, video library updates, future event announcements, and more.
Recordings from Explore 2025 in Las Vegas will be released on Wednesday, October 1.
Add to Calender | Join Insider

VMware Security Advisories History 2025

VMSARelease DateProductsLevelCVSSv3
VMSA-2025-00142025-07-29– vCenter- VCF – Telco CloudMedium4.4
VMSA-2025-00132025-07-15 – VCF- VVF- ESXi- Workstation- Fusion- Tools- Telco CloudCritical6.2 – 9.3
VMSA-2025-00122025-06-04VMware NSXHigh5.9 – 7.5
VMSA-2025-00112025-05-22Avi Load BalancerMedium6.8
VMSA-2025-00102025-05-20– VMware Fusion- VMware vCenter Server- VMware vSphere ESXi- VMware WorkstationHigh4.3 – 8.8
VMSA-2025-00092025-05-20– VMware Cloud FoundationHigh7.3 – 8.2
VMSA-2025-00082025-05-12Aria AutomationHigh8.2
VMSA-2025-00072025-05-12VMware ToolsMedium6.1
VMSA-2025-00062025-04-01Aria OperationsImportant7.8
VMSA-2025-00052025-03-25– VMware ToolsImportant7.8
VMSA-2025-00042025-03-04– VMware ESXi- Workstation- VMware FusionCritical7.1 – 9.3
VMSA-2025-00032025-01-30– Aria Operations for logs- Aria OperationsHigh5.2-8.5
VMSA-2025-00022025-01-28– Avi Load BalancerHigh8.6
VMSA-2025-00012025-01-07– Aria AutomationMedium4.3

Product Lifecycle

Livecylce Overview until End of September

ProductVersionEOL
VMware vCenter Converter6.6.022.09.2025
TKr 1.30.1 for vSphere 8.x1.30.128.09.2025
TKr 1.30.8 for vSphere 8.x1.30.828.09.2025

KB Articles

Some new and updated KB articles

SubjectID
Calculating unreserved CPU capacity via ARIA host metrics408344
Aria Operations for Networks 6.14.0 shows GUI Error „Time Range exceed data retention period of 15 days. Please select a different time range“ when running GUI queries408341
Storage vMotion failed for VM with error „Error caused by file /vmfs/volumes/<datastore_UUID>/VM-FOLDER/<VM_NAME>.vmdk“408231
Host not usable due to freezing408216
Diagnostics certificates panel in Aria Operations showing expired certificates that are not in use.408212
Missing iSCSI network port binding adaptors on a ESXi host408167
All Hosts are not showing within a cluster when attempting to vMotion a VM408101
Root password is expired need to reset408091
After Edge node replacement, packets drops experienced408056
Generate a Support Bundle for VCF Fleet Management408042
Configuring the content library on vCenter 9.0 using an External Subscription URL requiring proxy throws error: The remote library is not reachable408023
VM fails to boot from mount407986
Duplicate IP getting assigned to the VM’s due to conflicting network range407769
Config Drift task progress stuck at 0%407765
ESXi Host Stuck while booting & does not load the hypervisor407688
Migrating Historical Data Between Aria Operations Instances407660
ESXi doesn’t Connect to vCenter and Does Not Load Admin From the Web407637
VM not powering on from a newly GPU installed Esxi host.407601
Changes to VM PCI Topology Due to New ACPI Motherboard Layout in Hardware Version 21 and later407595
ESXi logs report device busy (D:0x8) against unmap commands (0x42)407579
postgres certificate in Aria Operations407551
Unable to Log In to HCX Manager After Service Account Update407541
Fix Windows 11 In-Place Upgrade Error: „Your processor isn’t supported for this Windows version“407537

OnSite Events

Incl. VMUG User/cons

Explore 2025 – Las Vegas08/25
VMUG User/con Atlanta09/10
Explore On Tour – Mumbai (Registration now open)09/16
Explore On Tour – London (Registration now open)09/17-18
VMUG User/con Bosten09/18
VMUG User/con UK09/18
VMUG User/con Swedish09/23
VMUG User/con Dallas-Fort Worth10/02
Explore On Tour – Paris (Registration opens July 22)10/17
VMUG User/con Cincinnati 10/22
Explore On Tour – Sydney (Registration opens August 20)10/27
Explore On Tour – Tokyo (Registration opens August 27)10/29
VMUG User/con Washington D.C.11/05
Explore On Tour – Frankfurt (Registration opens September 10)11/11-12
Local VMUG Events Overview

TAM Lab | Podcast | Webinar | Blog Posts

Podcasts , Blogs and Webinars published last week

How to create your own Nested ESXi OVA
vtam.nl
TAM Blogpost
Although still very useful, the ESXi 8.0U3c release dates back to 12 December 2024 while the latest version (at the moment of writing) is ESXi 8.0U3g from 29 July 2025. See [KB316595 – Build numbers and versions of VMware ESXi/ESX]. This means additional time and work to upgrade each host after deployment.
Now wouldn’t it be cool to have the latest ESXi version available as OVA file? If your answer is yes, then this post is for you! With the heavy lifting already done by William and a bit of help from my engineering colleague Jianguo Guo I managed to create Nested OVAs for ESXi 8.0U3g and ESX 9.0
We’re Taking Hans-on Labs to Las Vegas
Hands-on Labs
Info
The VMware Hands-on Labs portal is currently offline as our team is at VMware Explore Las Vegas to bring the labs experience live to the event.If you are at Explore, come visit us in the Hands-on Labs room and try the latest labs in person. We can’t wait to see you there!The Hands-on Labs portal will be back online August 29, 2025.​​​​​​​A new batch of labs will be available starting the week of September 1, 2025Thanks for your patience and support—we’re excited to share the next wave of labs with you!— The Hands-on Labs Team
Why You Should Engage a Broadcom Knight for VMware Cloud Foundation
VCF Hands-on Labs
Blogpost
Getting VCF 9 right is about more than just racking servers and running an installer. It’s about designing for the future state of your business, aligning your operational model, and making sure the technology serves your people, not the other way around. That’s exactly where the Broadcom Knights come in.If your goal is to make VCF 9 the foundation for a modern, secure, and scalable private cloud, having a Knight on your side isn’t just helpful, it’s the smart move. Here is how to find the Knight for you: Go Here
VMware Explore 2025 Preview
Virtually Speaking Podcast
Podcast
Get ready for VMware Explore 2025 in Las Vegas! In this episode of Virtually Speaking, hosts Pete Flecha and John Nicholson are joined by Brad Tompkins, Executive Director of VMUG, to preview what attendees can expect at this year’s event.
They cover:The latest technical sessions and free certification opportunities for full pass holdersVMUG activities, including their booth (#105), member reception at Wakuta, and exclusive VMUG Advantage discount (15% off with code Explore2025) for home lab access to VCF, vDefend, and Avi Load BalancerPete’s upcoming session on private cloud repatriation and the Virtually Speaking podcast booth, where they’ll be interviewing expertsThe power of community connections, customer-to-PM feedback, and the all-important “hallway track”Fun highlights like the party at the Palazzo pool deck featuring the Honey Buckets.
VMUG at Explroe with Brad Tompkins, Getting to know 5000 of your Friends and Peers
VMware Communities Roundtable #737
Podcast
Brad Tompkins comes on the show to talk about VMUG at Explore, the Reception, Sessions, Booth and the all important Advantage discount. Also don’t forget your VCP certification for your home lab licenses.

VMware Cloud Foundation 9.0

I am happy about the announcement that VMware Cloud Foundation 9.0 is generally available from today.
There are countless changes with this release. I will go into some of them myself in the coming days, but I would like to share an overview with you for the first step. From my personal point of view, these links are very valuable for getting an initial overview of VCF 9.

TitleCategory
VMware Cloud Foundation Hands-On- Labs CatalogHOL
Whats New in VMware Cloud Foundation 9Blog Post
VMware Cloud Foundation 9 – Documentation Doc
VCF Component & VVF Component (BOM)Doc
Inside the Core: What’s New in VCF 9Youtube
VMware Cloud Foundation 9 Unpacked: A Technical BreakdownYoutube
The VCF 9 Launch Event for Practitioners! VMUG Global Virtual JuneWebinar
VMware Cloud Foundation 9.0 – Release NotesDoc
VCF 9.0 – Smarter Operations, Better Performance, Stronger SecurityBlog Post
Licensing. Simplified. Real talk on what VCF licensing looks like now.Blog Post
What’s Inside a VCF 9 License File? Understanding Connected vs. Disconnected RegistrationBlog Post
Preserve Data Sovereignty and Deepen Protection against Cyberattacks with VCF 9.0Blog Post
VCF Operations 9.0 : The Modern Way to Build and Manage Your Private CloudBlog Post
Run Modern, AI, and Traditional Apps Better with vSphere in VCF 9.0Blog Post
DBaaS for Private Cloud: VMware DSM for VCF 9.0Blog Post
VMware Private AI Foundation with NVIDIA: Unlock AI with VCF 9.0Blog Post
Deprecated & End of Support Notes:
vSphere | vSAN | NSX | VCF Installer | Operations | Automation | SDKs, APIs, and CLIs
Doc

VMware Good2know [CW22]

Product Release

ProductVersionRelease DateDownloadRelease Notes
vCenter Server7.0 u3 v05/20DownloadRelease Notes
ESXi 7.0 u3 v05/20DownloadRelease Notes
Skyline Health Diagnostics 4.0.905/30DownloadRelease Notes

VMware Security Advisories

VMSA-2025-0009 [HIGH]
VMware Cloud Foundation
CVSSv3
7.3 – 8.2
CVE(s)
– VMware Cloud Foundation Directory Traversal Vulnerability (CVE-2025-41229)
– VMware Cloud Foundation Information Disclosure Vulnerability  (CVE-2025-41230)
– VMware Cloud Foundation Missing Authorisation Vulnerability (CVE-2025-41231)

Description
CVE-2025-41229: VMware Cloud Foundation contains a directory traversal vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.2. A malicious actor with network access to port 443 on VMware Cloud Foundation may exploit this issue to access certain internal services. To remediate CVE-2025-41229 apply the updates listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below to affected deployments. VMware would like to thank Gustavo Bonito of NATO Cyber Security Centre (NCSC) for reporting this issue to us.
CVE-2025-41230: VMware Cloud Foundation contains an information disclosure vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.5. A malicious actor with network access to port 443 on VMware Cloud Foundation may exploit this issue to gain access to sensitive information. To remediate CVE-2025-41230 apply the updates listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below to affected deployments. VMware would like to thank Gustavo Bonito of NATO Cyber Security Centre (NCSC) for reporting this issue to us.
CVE-2025-41231: VMware Cloud Foundation contains a missing authorisation vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 7.3. A malicious actor with access to VMware Cloud Foundation appliance may be able to perform certain unauthorised actions and access limited sensitive information. To remediate CVE-2025-41231 apply the updates listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below to affected deployments. VMware would like to thank Gustavo Bonito of NATO Cyber Security Centre (NCSC) for reporting this issue to us.
VersionCVEFixed VersionWorkaround
5.xCVE-2025-41229, CVE-2025-41230, CVE-2025-412315.2.1.2None
4.xCVE-2025-41229, CVE-2025-41230, CVE-2025-41231KB398008None

VMSA-2025-0010 [HIGH]
VMware Cloud Foundation | VMware Fusion | VMware Workstation | VMware Telco Cloud Infrastructure |
VMware Telco Cloud Platform | VMware vCenter Server | VMware vSphere ESXi
CVSSv3
4.3 – 8.8
CVE(s)
– VMware vCenter Server authenticated command-execution vulnerability (CVE-2025-41225)
– Guest Operations Denial-of-Service Vulnerability (CVE-2025-41226)
– Denial-of-Service Vulnerability (CVE-2025-41227)
– VMware ESXi and vCenter Server Reflected Cross Site Scripting (XSS) Vulnerability (CVE-2025-41228) 

Description
CVE-2025-41225: The vCenter Server contains an authenticated command-execution vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.8. A malicious actor with privileges to create or modify alarms and run script action may exploit this issue to run arbitrary commands on the vCenter Server. To remediate CVE-2025-41225 apply the updates listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below to affected deployments. VMware would like to thank Oliver Bachtik and Bert De Bruijn for reporting this issue to us.
CVE-2025-41226: VMware ESXi contains a denial-of-service vulnerability that occurs when performing a guest operation. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 6.8. A malicious actor with guest operation privileges on a VM, who is already authenticated through vCenter Server or ESXi may trigger this issue to create a denial-of-service condition of guest VMs with VMware Tools running and guest operations enabled.To remediate CVE-2025-41226 apply the updates listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below to affected deployments. VMware would like to thank security researcher Tom Jøran Sønstebyseter Rønning (@L1v1ng0ffTh3L4N) of Statnett (Norway) and Uros Orozel for independently reporting this issue to us.
CVE-2025-41227: VMware ESXi, Workstation, and Fusion contain a denial-of-service vulnerability due to certain guest options. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 5.5. A malicious actor with non-administrative privileges within a guest operating system may be able to exploit this issue by exhausting memory of the host process leading to a denial-of-service condition. To remediate CVE-2025-41227 apply the updates listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below to affected deployments. VMware would like to thank the National Security Agency for reporting this issue to us.
CVE-2025-41228: VMware ESXi and vCenter Server contain a reflected cross-site scripting vulnerability due to improper input validation. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 4.3. A malicious actor with network access to the login page of certain ESXi host or vCenter Server URL paths may exploit this issue to steal cookies or redirect to malicious websites. To remediate CVE-2025-41228 apply the updates listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below to affected deployments. VMware would like to thank Huang for reporting this issue to us.
Product (Version)CVEFixed Version
vCenter Server (8)CVE-2025-41225, CVE-2025-412288.0 U3e
vCenter Server (7)CVE-2025-412257.0 U3v
VMware ESXi (8)CVE-2025-41226, CVE-2025-41227, CVE-2025-41228ESXi80U3se-24659227
VMware ESXi (7)CVE-2025-41226, CVE-2025-41227, CVE-2025-41228ESXi70U3sv-24723868
VMware Cloud Foundation (vCenter) (5.x)CVE-2025-41225, CVE-2025-41228Async patch to 8.0 U3e
VMware Cloud Foundation (vCenter) (4.5.x)CVE-2025-41225Async patch to 7.0 U3v
VMware Cloud Foundation (ESXi) (5.x)CVE-2025-41226, CVE-2025-41227, CVE-2025-41228Async patch to ESXi80U3se-24659227
VMware Cloud Foundation (ESXi) (4.5.x)CVE-2025-41226, CVE-2025-41227, CVE-2025-41228Async patch to ESXi70U3sv-24723868
VMware Telco Cloud Platform (ESXi) (5.x, 4.x, 3.x, 2.x)CVE-2025-41226, CVE-2025-41227, CVE-2025-41228ESXi80U3se-24659227
VMware Telco Cloud Infrastructure (ESXi) (3.x)CVE-2025-41226, CVE-2025-41227, CVE-2025-41228ESXi80U3se-24659227
VMware Telco Cloud Infrastructure (ESXi) (2.x)CVE-2025-41226, CVE-2025-41227, CVE-2025-41228ESXi70U3sv-24723868
VMware Telco Cloud Platform (vCenter) (5.x, 4.x, 3.x, 2.x)CVE-2025-41225, CVE-2025-412288.0 U3e
VMware Telco Cloud Infrastructure (vCenter) (3.x)CVE-2025-412258.0 U3e
VMware Telco Cloud Infrastructure (vCenter) (2.x)CVE-2025-412257.0 U3v
VMware Workstation (17.x)CVE-2025-4122717.6.3
VMware Fusion (13.x)CVE-2025-4122713.6.3

Product Lifecycle

ProductVersionEOL
VMware Data Services Manager2.1.224.06.2025
Uhana by VMware0.52.330.06.2025
Uhana by VMware0.52.430.06.2025
Uhana by VMware0.52.530.06.2025
Uhana by VMware0.52.630.06.2025
VMware Data Services Manager2.1.316.07. 2025
VMware Kubernetes Container Clusters Plug-in4.1.118.07.2025
VMware HCX4.1027.07.2025
VMware HCX4.10.127.07.2025
VMware HCX4.10.227.07.2025
VMware HCX4.10.327.07.2025
TKr 1.29.4 for vSphere 8.x1.29.428.07.2025
VMware Integrated OpenStack7.331.07.2025
VMware vCenter Converter6.6.022.09.2025
TKr 1.30.1 for vSphere 8.x1.30.128.09.2025
TKr 1.30.8 for vSphere 8.x1.30.828.09.2025

KB Articles

KB ArticleID
ESXi hosts may PSOD during upgrade from NSX 3.2.x or 4.0.x/4.1.x to 4.2.2 due to NSX VSIP module panic.
VSAN health check failed: vSAN cluster partition when trying to patch stretched cluster to ESXI 8.0U3d399632
Data Services Manager – Upgrade to 2.2.2 from 2.2.1 fails399627
ESXi host cannot install VIBs – shows non-compliant after performing baseline/image remediation.399620
NSX manager syslog is not reporting user succesful LOGIN events399588
VM Guest Metrics Missing in Aria Operations399513
vSAN — ESXi Host vSAN Storage is down after moving vSAN Cluster to another vCenter399504
vSAN traces daemon (vsantraced service) fails with admission failure errors399290
Disruptive actions for Aria Operations for Logs cluster that could cause data loss399260
Networking not found after reboot of VIDM cluster399247
Multicast traffic between VLAN and Overlay segment through edge bridge doesn’t work.399231
Global Manager Missing from Upgrade Menu in Federation Environment399224
Upgrade vSAN Data Protection Appliance to new patches399210
Grayed out certificate cannot be removed399204
HA Event and resource utilization399125
NSX upgrade page show blank399060
The limitation of Proactive HA in 2-node vSphere HA cluster398787

Podcast | Webinar | Blog Posts

City of Fort Lauderdale – VMware Modernization Project
VMware CMTY Podcast #727
06/04
Podcast
Join us for Podcast #727 as we dive into the City of Fort Lauderdale’s VMware Modernization Project with CIO Tamecka McKay and SME & Division Manager Derek Richardson. They’ll share how they’re transforming IT infrastructure, managing large-scale modernization efforts, and overcoming challenges along the way. Plus, we’ll explore Tamecka’s VMUG journey, how community involvement has shaped careers, and her insights from VMware Explore. Don’t miss this episode packed with real-world lessons and expert insights!
The Modern VKS: Unlocking What’s Already Inside Your VKS
VCF – vSphere Kubernetes Service (VKS)
Youtube
You’ve already got the tools—now it’s time to unlock their full potential. Join VMware by Broadcom’s own Bryan Sullins for a lively, myth-busting session exploring the modern VKS. We’ll unpack what’s changed, what’s possible, and how to take advantage of features […]
Mastering Get-View: Enhance vCenter User Auditing
VCF – PowerCLI
Blogpost
If you’re already using PowerCLI, you know it’s a powerhouse for automating routine tasks. But you might not know it can unlock advanced operations. These operations are nearly impossible to achieve through the sphere UI alone. PowerCLI: More Than Meets the Eye At VMware, we […]
VMware Cloud Foundation: Don’t Forget About SSO Service Accounts
VMware Cloud Foundation – Webinar Series
Webinar
Are you still using spreadsheets to plan capacity in your Virtual infrastructure? One key requirement when delivering a modern and robust private cloud is to always ensure sufficient capacity for running the apps that grow the business. Unlike Public Clouds, private clouds do not have endless resources, so the ability to manage, monitor, and forecast capacity is critical to success.  In this session, learn how VCF Operations can support not only driving a capacity-efficient private cloud but also forecast capacity growth and, ultimately, get rid of those spreadsheets!Speaker:  Christopher Lewis. Lead Solutions Architect, VCF Specialist UK&I
Norwegian Public Roads Administration Accelerates Service Delivery and Innovation with VMware Cloud Foundation
VMware Cloud Foundation
Blogpost
Norwegian Public Roads Administration (Statens vegvesen) is the government agency responsible for national and county public roads in Norway. Its remit includes the construction and maintenance of the road network, as well as vehicle inspection, driver training and road safety. With a vision to create a more intelligent, safe and connected transportation ecosystem, the agency wanted to modernize its IT infrastructure to support innovative initiatives like intelligent transport systems and expanded public data access.

Interview: Ketil Bårdsnes (Team Leader for Central Infrastructure NPRA) – Youtube
VCF 9.0 Hardware Considerations
williamlam.com
Blogpost
It is VERY important to understand that VMware/Broadcom does NOT certify hardware and I/O devices, which is still a common miss-conception and/or FUD being thrown out in the community. Our OEM partners ultimately decide which devices to certify for each release and they may choose NOT to re-certify devices for a number of reasons including earlier end-of-sales and end-of-life support. This  is not unique to VCF 9.0 and it is not unique pre or post-acquisition of VMware.

VMware Good2know [CW20]

Product Release

NSX4.2.205/08DownloadRelease Notes
VMware Tools12.5.205/12DownloadRelease Notes
Automation 8.18.1 P205/12DownloadRelease Notes

KB Article

SubjectID
RaaS not showing new jobs Could not check license expiration397939
Local account not able to log into Aria operations for logs via SSH397910
Manually resolve, acknowledge or suppress alarm on NSX Standby Global Manager397854
Aria Operation reports failed to download with error „500 Error Internal Server Error“397840
VMware Aria Automation Health API fails with 500 error.397839
Aria Operations plugin installation fails in vCenter due to port 443 connectivity issue397815
Accidentally deleting cluster with vSAN and crashing vCenter397791
All host in the vSAN cluster have checksum errors397784
vMotion Compatibility Alert „Too large clock skew was detected“ on Time Synced ESXi Hosts397777
Cluster remediation fails with dl.broadcom token URL397734
Failed to clone and Could not complete network copy for file during template publishing397658
Upgrade Assessment result shows Warning: NTP Servers are not reachable397570
Telegraf Agent Support for Windows Server 2025 in Aria Operations.397548
vSAN in errored state, unable to manage VM’s or hosts.397544
ESXi host enters evaluation mode and displays “# CPUs (up to # cores)” after ESXi upgrade397543
NSX Installation on an ESXi Host fails with an error „Failed to install software on host. Host <IP> not reachable. java.rmi.RemoteException: VI SDK invoke exception:javax.net.ssl.SSLHandshakeException: CRL check failed“397539
NSX install on ESXi Transport Node fails at 48% with error „Waiting for Connection to Managers“397536
Telegraph Agent HTTP Check failed to create resource in Aria Operations397529
Can`t Download VXRail Management Pack (PAK file) for Aria Operations397498
Editing Security Groups fails/blocked with error „You do not have permission to perform some operations on this object“.397489
Mount old vSAN data on re-imaged ESXI host397457
vMotion takes a long time to complete397309
Unable to import new certificate to the Suite Lifecycle locker397267
VSAN datastore still appears in vCenter after disabling vsan service.397241
Failed upgrade using Lifecycle manger for Aria Operations for Log 8.16.0 – 8.18.3397203
The ESXi host is not responding in vCenter following a major storage failure397142

Podcast | Webinar | Blog Posts

DSM 2.2 – Live from the London VMUG
cormachogan.com/
Video
Last month, I was invited over to the London VMware User Group (VMUG) to talk about Data Services Manager version 2.2. I was joined by our local business development lead, Scott Lindsay. We were fortunate enough to have our session recorded at the event, so if you would like to watch the video, it is shared below. Kudos to Gareth Edwards for all of the AV work once again.
VMware Cloud Foundation: Don’t Forget About SSO Service Accounts
virtualbytes.io
Blogpost
VMware Cloud Foundation (VCF) delivers a modern, automated infrastructure. A vital, but frequently neglected, element of its operation is enabling password rotations. The svc-nsx-vc-fqdn service account within the vCenter Server SSO domain and SDDC Manager. This account is critical for NSX or LCM functionality and integration between solutions, and its failure – typically due to an expired or incorrect password – can cause significant disruption to your VCF environment. This post will highlight the importance of svc-nsx-vc-fqdn, explain the impact of a failed account, and provide proactive measures to ensure its ongoing health and prevent costly outages.
VMware Flings is now available in Free Downloads of Broadcom Support Portal
williamlam.com
Blogpost
As shared back in April, the VMware Fling downloads will be migrating to the Free Downloads section within the Broadcom Support Portal (BSP) and this transition has just completed over the weekend. Going forward, any net new or updated VMware Flings will be published on the BSP.

VMware Good2know [CW19]

Product Releases

Data Services Manager2.2.204/25DownloadRelease Notes
VMware Tools12.5.205/12DownloadRelease Notes
Automation 8.18.1 P205/12DownloadRelease Notes
VMware Cloud Foundation5.2.1.204/30

VMware Security Advisories

VMSA-2025-0007 [MEDIUM] [CVSSv3: 6.1]

Products: VMware Tools

CVE(s)

  • VMware Tools Insecure File Handling Vulnerability (CVE-2025-22247)

Description

An an insecure file handling vulnerability in VMware Tools was privately reported to VMware. Updates are available to remediate this vulnerability in the affected VMware products. VMware Tools contains an insecure file handling vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 6.1. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM. To remediate CVE-2025-22247 apply the patches listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ found below.

VMware would like to thank Sergey Bliznyuk of Positive Technologies for reporting this issue to us.

Response Matrix

VersionCVEFixed VersionWorkaround
12.x.x 11.x.x (Windows)CVE-2025-2224712.5.2 [1]None
12.x.x 11.x.x (Linux)CVE-2025-2224712.5.2 [3]None
12.x.x 11.x.x (macOS)CVE-2025-22247UnaffectedN/A

[1] VMware Tools 12.4.7 which is part of VMware Tools 12.5.2, also addresses the issue for Windows 32-bit.

[2] A version of open-vm-tools that addresses CVE-2025-22247 will be distributed by Linux vendors. 

[3] Fixed versions may differ based on the Linux distribution version and the distribution vendor.


VMSA-2025-0008 [HIGH] [CVSSv3: 8.2]

Products: Aria Automation

CVE(s)

  • DOM based Cross-site scripting(XSS) vulnerability (CVE-2025-22249)

Description

A DOM based Cross-Site Scripting (XSS) vulnerability in VMware Aria Automation was privately reported to VMware. Patches are available to remediate this vulnerability in affected VMware products. VMware Aria automation contains a DOM based Cross-Site Scripting (XSS) vulnerability. VMware has evaluated the severity of this issue to be in the Important severity range with a maximum CVSSv3 base score of 8.2.

A malicious actor may exploit this issue to steal the access token of a logged in user of VMware Aria automation appliance by tricking the user into clicking a malicious crafted payload URL. To remediate CVE-2025-22249, apply the patches listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ below.

VMware would like to thank Bartosz Reginiak for reporting this issue to us.

Response Matrix

VersionCVEFixed VersionWorkaround
Automation 8.18.xCVE-2025-222478.18.1 patch 2None
VCF 5.x / 4.xCVE-2025-22247KB394224None
Telco Cloud 5.xCVE-2025-222478.18.1 patch 2N/A

KB Article

SubjectID
virtual machines are unavailable on vSAN due to inaccessible objects error „vSAN Object Health“397048
VMware vSphere Security Configuration Guide for SOC2 Audit compliance396963
Unable to SSH into Aria Suite Lifecycle Manager with root it says „Access Denied“396950
To deactivate shell access for non-root ESXi users in ESXi 8.0396941
NSX Edge HA not working as expected396916
Unable to configure HCX adapter in Aria Operations396905
Upgrade VMware Aria Operations for Logs: Upgrade Failed396856
Unable to create a VM and deploy Windows Server 2025.396832
How to check Release and Photon OS Version on Aria Operations396820
vSphere license usage cannot display properly when vCenter Server’s CA certificate is missing on Aria Operations396789
Unable to create vSAN disk group because some disks show as ineligible396697
Log forwarding issue state idle in Aria Operations for Logs396685
Virtual machine becomes unresponsive due to host memory exhaustion396565
VMs unable to ping when on Distributed vSwitch (vDS)396559
Esxi hosts show degraded in UI, but everything related shows as being „UP“.396427
How to get the VM’s name as present in vCenter inventory within Guest OS396357
ESXi host is inaccessible via its IPv6 address396356
The ‚Deleted VMs‘ widget is not showing values in Aria Operations for Logs on the ‚Virtual Machine – Overview‘ dashboard396332
vSAN Skyline Health Check „NVMe device is VMware Certified“ shows previously certified NVMe devices are „Uncertified“396331

Virtual Events

Why is VCF the best platform to run VMs and Containers Part 2: Deep Dive05/13
TAM Customer Webinar – Deep Dive into VCF Operations for Networks: Troubleshooting05/15
Architect’s Edge Live – The Modern VKS: Unlocking What’s Already Inside Your vSphere Kubernetes Service05/27
VMUG June Virtual Event06/24

Podcast | Webinar | Blog Posts

Why is VCF the best platform to run VMs and Containers Part 2: Deep Dive
VMUG
05/13
Webinar
Kubernetes is everywhere these days. Organizations are using Kubernetes to build and run modern apps. VCF is a single platform for containers and VMs with built-in VMware vSphere Kubernetes Service (VKS), a CNCF-certified, upstream-conformant Kubernetes runtime, for organizations to run modern containerized applications alongside traditional VMs on the same infrastructure. Join this session to learn how VCF makes it easy to run modern and traditional workloads side by side and enables cloud admin teams and platform teams to collaborate so much better. 
The Modern VKS: Unlocking What’s Already Inside Your vSphere Kubernetes Service
Architect’s Edge Live
05/27
Webinar
You’ve already got the tools—now it’s time to unlock their full potential.Join VMware by Broadcom’s own Bryan Sullins for a lively, myth-busting session exploring the modern vSphere Kubernetes Service (VKS).
We’ll unpack what’s changed, what’s possible, and how to take advantage of features you may not even know you have.
Whether you’re a longtime vSphere admin or just Kubernetes-curious, you’ll walk away with a clearer understanding of how VKS fits into your environment—and why it’s more relevant than ever. No fluff. No steep learning curve. Just practical insights to help you activate what’s already there.
If you think you know VKS… think again. It’s a new day for vSphere + Kubernetes—and it starts right here.

VMware Good2know [CW18]

VMware Explore – Las Vegas

If you need help getting approval to attend, try using the convince your manager letter.

Pass Types and Inclusions
Full EventEssentialsMeetings+
General Session Access 
The Meeting Center 
The Hub
Session & Labs Access 
Session & Labs Scheduling 
On-Demand Sessions After Oct. 1
Certification Exam Add-on
The Party Add-onAdd-on
Event Meals 
Explore Backpack and T-Shirt
https://www.vmware.com/explore/us/attend/pricing

VMware Explore – On Tour

Explore is extending across the globe as 1 to 1.5 day events that will highlight the top content and insights from Explore in Las Vegas. Each event will include a curated subset of sessions and Hands-on Labs, a meetings program, and networking opportunities. Check back on this page for registration updates and more information coming soon.

Mumbai09/16-17Venue Coming Soon
London09/17-18Hilton London Metropole
Paris10/15-16Maison de la Mutualité
Sydney10/22Sofitel Sydney Wentworth
Tokyo *1 10/29Grand Hyatt Tokyo
Frankfurt11/12-13Sheraton Frankfurt Airport Hotel & Conference Center
*1 Event will be presented in Japanese

Visit the Explore Video Library for replays from last year’s event.


KB Article

SubjectID
Connection timeout when validating vCenter Server in VMware Aria Operations396411
OpenSSH vulnerability CVE-2025-26465 in Aria Operations for Logs396375
Lost access to volumes correlated with FC driver aborts396366
The ‚Deleted VMs‘ widget is not showing values in Aria Operations for Logs on the ‚Virtual Machine – Overview‘ dashboard396332
vSAN cluster shut down. Unable to restart due to error „vSAN Clustering is not enabled on this host“396326
Local Datastore is not showing for an ESXi host396192
Multiple vSAN compliance errors in vSAN Skyline health check396150
After completing a VM backup, the virtual machine fails to power on396139
vMotion port 8000 blocked after ESXi host firewall rule change396132
Host is not responding in the vCenter396065
Drives not available to be claimed when creating vSAN cluster396033
administrator@vsphere.local failed attempts reported in Log Events.396018
VMware Aria Operations Root Password expired and appears disconnected in SDDC manager395976
Windows clustering fails on esxi 8.0 hosts395751
Aria Operations for Logs /storage/core full 97% all the time.395747
vMotion is not licensed for the host395687
Inaccessible VM entries in vCenter after an ESXi host crash395596

Podcast | Webinar | Blog Posts

Why is VCF the best platform to run VMs and Containers Part 2: Deep Dive
VMUG
VMUG Webinar
Kubernetes is everywhere these days. Organizations are using Kubernetes to build and run modern apps. VCF is a single platform for containers and VMs with built-in VMware vSphere Kubernetes Service (VKS), a CNCF-certified, upstream-conformant Kubernetes runtime, for organizations to run modern containerized applications alongside traditional VMs on the same infrastructure. Join this session to learn how VCF makes it easy to run modern and traditional workloads side by side and enables cloud admin teams and platform teams to collaborate so much better. 
« Ältere Beiträge

© 2026 vmdaube

Theme von Anders NorénHoch ↑