VMWare Product Security Update Advisory

Feb 26 2026

Overview

VMWare has released security updates to fix vulnerabilities in its products. Users of affected products are advised to update to the latest version.

Affected Products

CVE-2026-22719, CVE-2026-22720

VMware Cloud Foundation version: 9.x.x.x
VMware vSphere Foundation version: 9.x.x.x
VMware Aria Operations version: 8.x
VMware Cloud Foundation versions: 5.x, 4.x
VMware Telco Cloud Platform version: 5.x, 4.x
VMware Telco Cloud Infrastructure versions: 3.x, 2.x

Resolved Vulnerabilities

Command Injection Vulnerability in VMware Aria Operations (CVE-2026-22719)
Stored Cross Site Scripting Vulnerability in VMware Aria Operations (CVE-2026-22720)

Vulnerability Patches

Vulnerability Patches have been made available in the latest updates. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2026-22719, CVE-2026-22720

VMware Cloud Foundation version: 9.0.2.0
VMware vSphere Foundation version: 9.0.2.0
VMware Aria Operations version: 8.18.6
VMware Cloud Foundation version: KB92148
VMware Telco Cloud Platform version: KB428241
VMware Telco Cloud Infrastructure version: KB428241

References

[1] VMSA-2026-0001: VMware Aria Operations updates address multiple vulnerabilities (CVE-2026-22719, CVE-2026-22720 and CVE-2026-22721)
https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36947

VMWare Product Security Update Advisory

Soliton Systems Product Security Update Advisory (CVE-2026-25108)

NVIDIA (License System) Products February 2026 Security Update Advisory

Tags:

Soliton Systems Product Security Update Advisory (CVE-2026-25108)

NVIDIA (License System) Products February 2026 Security Update Advisory