Introduction On May 20, 2025, Broadcom published VMSA-2025-0009, a security advisory detailing three newly discovered vulnerabilities in VMware Cloud Foundation. All three issues were reported by the NATO Cyber Security Centre (NCSC) and affect versions 4.5.x and 5.x of the platform. These vulnerabilities allow unauthorized access to files, information disclosure through exposed endpoints, and the execution of privileged operations due to missing authorization checks. There a
