Release Notes
| Product | Version | Release Date | Download | Release Notes |
|---|---|---|---|---|
| Aria Automation | 8.18.1 Patch 1 | 01/07 | Download | Release Notes |
Security Advisory
VMSA-2025-0001 [MEDIUM][CSSv3 4.3]
Product(s)
- Aria Automation
- Cloud Foundation
CVE(s)
- VMware Aria Automation SSRF vulnerability (CVE-2025-22215)
Description
- VMware Aria Automation contains a server-side request forgery (SSRF) vulnerability. VMware has evaluated the severity of this issue to be in the Moderate severity range with a maximum CVSSv3 base score of 4.3. A malicious actor with „Organization Member“ access to Aria Automation may exploit this vulnerability enumerate internal services running on the host/network. To remediate CVE-2025-22215 apply the patches listed in the ‚Fixed Version‘ column of the ‚Response Matrix‘ found below. VMware would like to thank Bartosz Reginiak for reporting this issue to us.
Response Matrix
| Version | CVE | Fixed Version | Workaround |
|---|---|---|---|
| 8.x | CVE-2025-22215 | 8.18.1 patch 1 | none |
| 4.x / 5.x (VCF) | CVE-2025-22215 | KB 385294 | none |
KB Articles
| Subject | KB-Article |
|---|---|
| ESXi PSOD Panic from another CPU (tcbinfo lock) | 385615 |
|
Unable to Uninstall VMtools in a non-vSphere environment | |
|
Aria Automation Windows VM deployment timed out during cloudbase-init | |
|
Unable to create Configuration Drift Template in Aria Operations | |
|
„Disabled CC6 power saving state due to AMD erratum 1474 | |
|
User not found error when viewing projects | |
|
NSX 4.2.x Bare Metal Edge fails to install | |
|
Aria Automation upgrade fails with error „LCMVRAVAUPGRADE70003“ from Aria Suite lifecycle | |
|
Aria Automation Orchestrator fails to run asynchronous workflow started by script when reading from Aria Automation metadata | |
|
„Can’t Auto Discover vCenter“ while using orchestrator plugin for vcloud Director | |
|
VMware Aria Automation 8.18.1 Cumulative Update – Patch 1 |
VMUG User/con
| Florida | 9295 Universal Blvd, Orlando, FL 32819 | 03/06 |
| Dutch | Oude Engelenseweg 1, 5222AA, ’s-Hertogenbosch | 03/12 |
| Philadelphia | Valley Forge Casino Resort, 1160 First Ave, King of Prussia, PA 19406 | 03/25 |
| German | KAP Europa, Osloer Str. 5, 60327 Frankfurt am Main | 05/08 |
Podcast | Webinar | Blog Posts
Broadcom Profile Authentication Technology Transition Notice (KB Article)
Broadcom Inc., is modifying our authentication technology and will require you to activate your account after the transition is complete on January 21, 2025. To complete the transition of your Broadcom Profile please follow the steps below…
Note: User Registration on Support Portal will not be accessible from Jan 18, 2025 at 12am PT to Jan 21, 2025 at 12am PT. We apologize for the inconvenience.
VMware Cloud Foundation Private Cloud Platform Poster (Poster)
It’s been a long time since I printed out my last VMware poster. And even though it is no longer current, the 6.x Network Port Diagram poster still hangs directly above my desk. Time to replace it with the new VCF 5.2.1 poster.
A quick how-to: Deploying the TAM Data Manager (TAM BlogPost)
Now Skyline is gone for a while, you as a TAM Customer might want to get the nice and shiny vSphere Insights Report again, and ask yourself: “What can I do to help my favorite TAM?” Well, the solution is simple, provide them with an Export from the TAM Data Manager. Some of you might still remember it, and it is back, now with support for VCF and vSphere 8. So let us deploy the TDM and make your TAM happy.
VMUG Advantage – Need to convince your boss? (VMUG)
Need help on educating your boss on the importance of purchasing your VMUG Advantage membership? We have created a justification email for you to use. Please edit or revise the letter to fit your needs.
Install VMware Identity Manager (VIDM) Patch CSP-97727 (TAM BlogPost)
You probably guessed it… this post is about installing VMware Identity Manager (VIDM) Patch CSP-97727. Although the official guidance in Broadcom Article [380348] is good, I’d like to share my experience and add some additional information.
Note that if you started all the way back with VIDM version 3.3.5 and went through all the upgrades you may run into an issue applying this patch (if you haven’t applied an earlier patch). The important article to mention here is [378767] – “vIDM node failed to boot after applying patch CSP-95247” which describes the VIDM VM no longer boots and is stuck with “Error 15: File not found”
Storage/NFS Considerations (TAM BlogPost)
My homelab was in need of some more serious storage and during this exercise I gained interesting insights that I will share in this post.
Up until recently I made use of central Synology based NFSv3-storage and two locally attached PCI flash-cards for which I was restricted (drivers) to running ESX6.7 on the single physical host (HP-DL380Gen9).
SDDC-Manager tips&tricks (TAM BlogPost)
My VCF deployment started it’s life in June 2024 based on the 5.0 BOM. I managed to install most of the Aria-suite components and added NSX-ALB(AVI) to the mix, meanwhile steadily upgrading to the latest VCF-releases and intermediate async-patches. Eventually, I even converted the very same Management-WLD from OSA-to-NFS-to-ESA and got it to work with vLCM images (both not supported btw!).
How to Apply for Your Free VCP Exam (VMUG)
VMUG Advantage members now have access to an xclusive opportunity to apply for a FREE VMware Certified Professional (VCP) exam. Whether you’re looking to elevate your skills, gain recognition, or access exclusive tools, this is your chance to take the next step in your VMware journey.