How severe is CVE-2025-22247?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.1 out of 10.

What type of vulnerability is CVE-2025-22247?

This is classified as CWE-59, which is a common weakness in software security.

CVE-2025-22247

MEDIUM Year: 2025

CVSS v3 Score

6.1

Medium

Weakness Type

CWE-59

View all →

Vulnerability Description

VMware Tools contains an insecure file handling vulnerability. A malicious actor with non-administrative privileges on a guest VM may tamper the local files to trigger insecure file operations within that VM.

CVE-2013-1866

MEDIUM

CVSS:6.1(Medium)

OpenSC OpenSC.tokend has an Arbitrary File Creation/Overwrite Vulnerability

CWE-592013

CVE-2013-1867

MEDIUM

CVSS:6.1(Medium)

Gemalto Tokend 2013 has an Arbitrary File Creation/Overwrite Vulnerability

CWE-592013

CVE-2015-5700

MEDIUM

CVSS:6.1(Medium)

mktexlsr revision 22855 through revision 36625 as packaged in texlive allows local users to write to arbitrary files via a symlink attack.

CWE-592015

CVE-2015-5701

MEDIUM

CVSS:6.1(Medium)

mktexlsr revision 36855, and before revision 36626 as packaged in texlive allows local users to write to arbitrary files via a symlink attack. NOTE: this vulnerability exists due to the reversion of a...

CWE-592015

CVE-2017-12258

MEDIUM

CVSS:6.1(Medium)

A vulnerability in the web-based UI of Cisco Unified Communications Manager could allow an unauthenticated, remote attacker to execute a cross-frame scripting (XFS) attack. The vulnerability exists be...

CWE-592017

CVE-2020-26277

MEDIUM

CVSS:6.1(Medium)

DBdeployer is a tool that deploys MySQL database servers easily. In DBdeployer before version 1.58.2, users unpacking a tarball may use a maliciously packaged tarball that contains symlinks to files e...

CWE-592020

CVE-2025-22247

Vulnerability Description

Related Vulnerabilities

CVE-2013-1866

CVE-2013-1867

CVE-2015-5700

CVE-2015-5701

CVE-2017-12258

CVE-2020-26277