CVE-2025-41250 | VMware vCenter SMTP Header command injection

A vulnerability has been found in VMware vCenter, Cloud Foundation, Telco Cloud Platform, Telco Cloud Infrastructure and vSphere Foundation and classified as critical. Affected is an unknown function of the component SMTP Header Handler. Performing manipulation results in command injection.

This vulnerability is cataloged as CVE-2025-41250. It is possible to initiate the attack remotely. There is no exploit available.

The affected component should be upgraded.VulDB Recent EntriesRead More