| CVE-2025-37137 | Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2025-10-14 16:57:32 | Deep Dive |
| CVE-2025-37136 | Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2025-10-14 16:56:58 | Deep Dive |
| CVE-2025-37135 | Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2025-10-14 16:56:37 | Deep Dive |
| CVE-2025-37134 | Authenticated Command Injection Vulnerability in the Low-Level Interface Library Affecting AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:56:05 | Deep Dive |
| CVE-2025-37133 | Authenticated Command Injection Vulnerability in AOS-8 Controller/Mobility Conductor Web-Based Management Interface via the CLI Binaryalong with accounting controls for tracking and logging user activities and resource usage. | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:54:36 | Deep Dive |
| CVE-2025-37132 | Authenticated Remote Code Execution Vulnerability in AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface via Arbitrary File Write | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:53:17 | Deep Dive |
| CVE-2025-37148 | Kernel Panic triggered by Modified Ethernet Frames leads to Denial of Service Vulnerability | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2025-10-14 16:43:35 | Deep Dive |
| CVE-2025-37147 | Secure Boot Bypass allows for Compromise of Hardware Root of Trust | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.1 | 2025-10-14 16:42:57 | Deep Dive |
| CVE-2025-37146 | Unauthorized Filesystem Operations in System Firmware allow Authenticated Remote Code Execution | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:42:31 | Deep Dive |
| CVE-2024-42400 | Unauthenticated Denial-of-Service (DoS) Vulnerabilities in the Soft AP Daemon Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise | HPE Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Medium | 5.3 | 2024-08-06 19:51:17 | Deep Dive |
| CVE-2024-42399 | Unauthenticated Denial-of-Service (DoS) Vulnerabilities in the Soft AP Daemon Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise | HPE Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Medium | 5.3 | 2024-08-06 19:48:07 | Deep Dive |
| CVE-2024-42398 | Unauthenticated Denial-of-Service (DoS) Vulnerabilities in the Soft AP Daemon Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise | HPE Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Medium | 5.3 | 2024-08-06 19:37:13 | Deep Dive |
| CVE-2024-42393 | Unauthenticated Stack-Based Buffer Overflow Remote Command Execution (RCE) in the Soft AP Daemon Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise (HPE) | Hpe Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Critical | 9.8 | 2024-08-06 18:58:53 | Deep Dive |
| CVE-2024-42394 | Unauthenticated Stack-Based Buffer Overflow Remote Command Execution (RCE) in the Soft AP Daemon Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Critical | 9.8 | 2024-08-06 18:57:23 | Deep Dive |
| CVE-2024-42395 | Unauthenticated Stack-Based Buffer Overflow Remote Command Execution (RCE) in the AP Certificate Management Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Critical | 9.8 | 2024-08-06 18:56:05 | Deep Dive |
| CVE-2024-42396 | Unauthenticated Denial-of-Service (DoS) Vulnerabilities in the AP Certificate Management Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Medium | 5.3 | 2024-08-06 18:54:43 | Deep Dive |
| CVE-2024-42397 | Unauthenticated Denial-of-Service (DoS) Vulnerabilities in the AP Certificate Management Service Accessed by the PAPI Protocol | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking InstantOS and Aruba Access Points running ArubaOS 10 | Medium | 5.3 | 2024-08-06 18:51:58 | Deep Dive |
| CVE-2024-26303 | Aruba Networks ArubaOS 安全漏洞 | Hewlett Packard Enterprise (HPE) | ArubaOS-S Switch | Medium | 4.9 | 2024-03-26 20:25:44 | Deep Dive |
| CVE-2024-25616 | Aruba Networks ArubaOS 安全漏洞 | Hewlett Packard Enterprise (HPE) | ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | Low | 3.7 | 2024-03-05 20:20:36 | Deep Dive |
| CVE-2024-25615 | Aruba Networks ArubaOS 安全漏洞 | Hewlett Packard Enterprise (HPE) | ArubaOS Wi-Fi Controllers and Campus/Remote Access Points | Medium | 5.3 | 2024-03-05 20:19:54 | Deep Dive |