Support Content Notification - Support Portal

Product Release Advisory - Stemcells (Ubuntu Jammy) 1.894 - jammy-stemcell-vsphere

Product/Component

Tanzu Kubernetes Runtime

5 more products

Notification Id

36110

Last Updated

04 September 2025

Initial Publication Date

04 September 2025

Status

CLOSED

Severity

CRITICAL

CVSS Base Score

9.8

WorkAround

N/A

Affected CVE

See CVE list in advisory

Product Release Advisory - Stemcells (Ubuntu Jammy) 1.894

Advisory ID	TNZ-2025-0092
Tanzu Issue Date	2025-09-04
Updated on

	Highest Score CVE from list below advisory details
Severity	Medium
CVSS V4 Vector	CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green
CVSS V4 Score	7.2 (Sev: HIGH)
CVSS V3.1 Vector	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
CVSS V3.1 Score	9.8 (Sev: CRITICAL)
CVSS V2 Vector	Unavailable
CVSS V2 Score	Unavailable (Sev: Unavailable)

Note: if cvss scores are "Unavailable" is is most likely due to the vulnerability being GHSA or BDSA without a matching CVE for nvd lookup.

Product Version Release Advisory

Product Release Stemcells (Ubuntu Jammy) 1.894
Product Release Notes: https://techdocs.broadcom.com/us/en/vmware-tanzu/platform-services/stemcells-for-tanzu/services/stemcell-rn/stemcells.html

Security Fixes This release has the following security fixes, listed by component.

Component	Vulnerabilities Resolved
jammy-stemcell-vsphere	CVE-2025-6965 (Critical) CVE-2025-40909 (Medium) CVE-2025-38094 (Medium) CVE-2025-38083 (Medium) CVE-2025-38024 (Medium) CVE-2025-38023 (Medium) CVE-2025-38009 (Medium) CVE-2025-38005 (Medium) CVE-2025-37998 (Medium) CVE-2025-37995 (Medium) CVE-2025-37994 (Medium) CVE-2025-37992 (Medium) CVE-2025-37991 (Medium) CVE-2025-37990 (Medium) CVE-2025-37989 (Medium) CVE-2025-37985 (Medium) CVE-2025-37983 (Medium) CVE-2025-37982 (Medium) CVE-2025-37970 (Medium) CVE-2025-37969 (Medium) CVE-2025-37967 (Medium) CVE-2025-37964 (Medium) CVE-2025-37949 (Medium) CVE-2025-37940 (Medium) CVE-2025-37930 (Medium) CVE-2025-37927 (Medium) CVE-2025-37923 (Medium) CVE-2025-37915 (Medium) CVE-2025-37914 (Medium) CVE-2025-37913 (Medium) CVE-2025-37912 (Medium) CVE-2025-37911 (Medium) CVE-2025-37909 (Medium) CVE-2025-37905 (Medium) CVE-2025-37885 (Medium) CVE-2025-37883 (Medium) CVE-2025-37881 (Medium) CVE-2025-37875 (Medium) CVE-2025-37871 (Medium) CVE-2025-37867 (Medium) CVE-2025-37862 (Medium) CVE-2025-37859 (Medium) CVE-2025-37858 (Medium) CVE-2025-37857 (Medium) CVE-2025-37851 (Medium) CVE-2025-37850 (Medium) CVE-2025-37844 (Medium) CVE-2025-37841 (Medium) CVE-2025-37840 (Medium) CVE-2025-37839 (Medium) CVE-2025-37838 (Medium) CVE-2025-37836 (Medium) CVE-2025-37830 (Medium) CVE-2025-37829 (Medium) CVE-2025-37824 (Medium) CVE-2025-37823 (Medium) CVE-2025-37819 (Medium) CVE-2025-37817 (Medium) CVE-2025-37812 (Medium) CVE-2025-37811 (Medium) CVE-2025-37810 (Medium) CVE-2025-37808 (Medium) CVE-2025-37805 (Medium) CVE-2025-37803 (Medium) CVE-2025-37797 (Medium) CVE-2025-37796 (Medium) CVE-2025-37794 (Medium) CVE-2025-37792 (Medium) CVE-2025-37790 (Medium) CVE-2025-37789 (Medium) CVE-2025-37788 (Medium) CVE-2025-37787 (Medium) CVE-2025-37781 (Medium) CVE-2025-37780 (Medium) CVE-2025-37773 (Medium) CVE-2025-37771 (Medium) CVE-2025-37770 (Medium) CVE-2025-37768 (Medium) CVE-2025-37767 (Medium) CVE-2025-37766 (Medium) CVE-2025-37765 (Medium) CVE-2025-37758 (Medium) CVE-2025-37757 (Medium) CVE-2025-37756 (Medium) CVE-2025-37749 (Medium) CVE-2025-37742 (Medium) CVE-2025-37741 (Medium) CVE-2025-37740 (Medium) CVE-2025-37739 (Medium) CVE-2025-37738 (Medium) CVE-2025-23163 (Medium) CVE-2025-23161 (Medium) CVE-2025-23159 (Medium) CVE-2025-23158 (Medium) CVE-2025-23157 (Medium) CVE-2025-23156 (Medium) CVE-2025-23151 (Medium) CVE-2025-23150 (Medium) CVE-2025-23148 (Medium) CVE-2025-23147 (Medium) CVE-2025-23146 (Medium) CVE-2025-23145 (Medium) CVE-2025-23144 (Medium) CVE-2025-23142 (Medium) CVE-2025-23140 (Medium) CVE-2025-22062 (Medium) CVE-2025-22027 (Medium) CVE-2025-21853 (Medium) CVE-2025-21839 (Medium) CVE-2024-56751 (Medium) CVE-2024-54458 (Medium) CVE-2024-53203 (Medium) CVE-2024-50280 (Medium) CVE-2024-50272 (Medium) CVE-2024-50258 (Medium) CVE-2024-50125 (Medium) CVE-2024-50073 (Medium) CVE-2024-49989 (Medium) CVE-2024-49960 (Medium) CVE-2024-46816 (Medium) CVE-2024-46774 (Medium) CVE-2024-46751 (Medium) CVE-2024-46742 (Medium) CVE-2024-42322 (Medium) CVE-2024-38541 (Medium) CVE-2024-38540 (Medium) CVE-2024-36908 (Medium) CVE-2024-35943 (Medium) CVE-2024-35867 (Medium) CVE-2024-35866 (Medium) CVE-2024-35790 (Medium) CVE-2024-27402 (Medium) CVE-2024-26739 (Medium) CVE-2024-26686 (Medium) CVE-2023-52757 (Medium) CVE-2023-52572 (Medium) CVE-2022-49535 (Medium) CVE-2022-49168 (Medium) CVE-2022-49063 (Medium) CVE-2022-48893 (Medium) CVE-2022-21546 (Medium) CVE-2025-48964 (Low) CVE-2025-47268 (Low) CVE-2025-37892 (Low) CVE-2024-53128 (None)

Component

Vulnerabilities Resolved

jammy-stemcell-vsphere

CVE-2025-6965 (Critical)
CVE-2025-40909 (Medium)
CVE-2025-38094 (Medium)
CVE-2025-38083 (Medium)
CVE-2025-38024 (Medium)
CVE-2025-38023 (Medium)
CVE-2025-38009 (Medium)
CVE-2025-38005 (Medium)
CVE-2025-37998 (Medium)
CVE-2025-37995 (Medium)
CVE-2025-37994 (Medium)
CVE-2025-37992 (Medium)
CVE-2025-37991 (Medium)
CVE-2025-37990 (Medium)
CVE-2025-37989 (Medium)
CVE-2025-37985 (Medium)
CVE-2025-37983 (Medium)
CVE-2025-37982 (Medium)
CVE-2025-37970 (Medium)
CVE-2025-37969 (Medium)
CVE-2025-37967 (Medium)
CVE-2025-37964 (Medium)
CVE-2025-37949 (Medium)
CVE-2025-37940 (Medium)
CVE-2025-37930 (Medium)
CVE-2025-37927 (Medium)
CVE-2025-37923 (Medium)
CVE-2025-37915 (Medium)
CVE-2025-37914 (Medium)
CVE-2025-37913 (Medium)
CVE-2025-37912 (Medium)
CVE-2025-37911 (Medium)
CVE-2025-37909 (Medium)
CVE-2025-37905 (Medium)
CVE-2025-37885 (Medium)
CVE-2025-37883 (Medium)
CVE-2025-37881 (Medium)
CVE-2025-37875 (Medium)
CVE-2025-37871 (Medium)
CVE-2025-37867 (Medium)
CVE-2025-37862 (Medium)
CVE-2025-37859 (Medium)
CVE-2025-37858 (Medium)
CVE-2025-37857 (Medium)
CVE-2025-37851 (Medium)
CVE-2025-37850 (Medium)
CVE-2025-37844 (Medium)
CVE-2025-37841 (Medium)
CVE-2025-37840 (Medium)
CVE-2025-37839 (Medium)
CVE-2025-37838 (Medium)
CVE-2025-37836 (Medium)
CVE-2025-37830 (Medium)
CVE-2025-37829 (Medium)
CVE-2025-37824 (Medium)
CVE-2025-37823 (Medium)
CVE-2025-37819 (Medium)
CVE-2025-37817 (Medium)
CVE-2025-37812 (Medium)
CVE-2025-37811 (Medium)
CVE-2025-37810 (Medium)
CVE-2025-37808 (Medium)
CVE-2025-37805 (Medium)
CVE-2025-37803 (Medium)
CVE-2025-37797 (Medium)
CVE-2025-37796 (Medium)
CVE-2025-37794 (Medium)
CVE-2025-37792 (Medium)
CVE-2025-37790 (Medium)
CVE-2025-37789 (Medium)
CVE-2025-37788 (Medium)
CVE-2025-37787 (Medium)
CVE-2025-37781 (Medium)
CVE-2025-37780 (Medium)
CVE-2025-37773 (Medium)
CVE-2025-37771 (Medium)
CVE-2025-37770 (Medium)
CVE-2025-37768 (Medium)
CVE-2025-37767 (Medium)
CVE-2025-37766 (Medium)
CVE-2025-37765 (Medium)
CVE-2025-37758 (Medium)
CVE-2025-37757 (Medium)
CVE-2025-37756 (Medium)
CVE-2025-37749 (Medium)
CVE-2025-37742 (Medium)
CVE-2025-37741 (Medium)
CVE-2025-37740 (Medium)
CVE-2025-37739 (Medium)
CVE-2025-37738 (Medium)
CVE-2025-23163 (Medium)
CVE-2025-23161 (Medium)
CVE-2025-23159 (Medium)
CVE-2025-23158 (Medium)
CVE-2025-23157 (Medium)
CVE-2025-23156 (Medium)
CVE-2025-23151 (Medium)
CVE-2025-23150 (Medium)
CVE-2025-23148 (Medium)
CVE-2025-23147 (Medium)
CVE-2025-23146 (Medium)
CVE-2025-23145 (Medium)
CVE-2025-23144 (Medium)
CVE-2025-23142 (Medium)
CVE-2025-23140 (Medium)
CVE-2025-22062 (Medium)
CVE-2025-22027 (Medium)
CVE-2025-21853 (Medium)
CVE-2025-21839 (Medium)
CVE-2024-56751 (Medium)
CVE-2024-54458 (Medium)
CVE-2024-53203 (Medium)
CVE-2024-50280 (Medium)
CVE-2024-50272 (Medium)
CVE-2024-50258 (Medium)
CVE-2024-50125 (Medium)
CVE-2024-50073 (Medium)
CVE-2024-49989 (Medium)
CVE-2024-49960 (Medium)
CVE-2024-46816 (Medium)
CVE-2024-46774 (Medium)
CVE-2024-46751 (Medium)
CVE-2024-46742 (Medium)
CVE-2024-42322 (Medium)
CVE-2024-38541 (Medium)
CVE-2024-38540 (Medium)
CVE-2024-36908 (Medium)
CVE-2024-35943 (Medium)
CVE-2024-35867 (Medium)
CVE-2024-35866 (Medium)
CVE-2024-35790 (Medium)
CVE-2024-27402 (Medium)
CVE-2024-26739 (Medium)
CVE-2024-26686 (Medium)
CVE-2023-52757 (Medium)
CVE-2023-52572 (Medium)
CVE-2022-49535 (Medium)
CVE-2022-49168 (Medium)
CVE-2022-49063 (Medium)
CVE-2022-48893 (Medium)
CVE-2022-21546 (Medium)
CVE-2025-48964 (Low)
CVE-2025-47268 (Low)
CVE-2025-37892 (Low)
CVE-2024-53128 (None)