| CVE-2025-37135 | Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI) | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2025-10-14 16:56:37 | Deep Dive |
| CVE-2025-37134 | Authenticated Command Injection Vulnerability in the Low-Level Interface Library Affecting AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:56:05 | Deep Dive |
| CVE-2025-37133 | Authenticated Command Injection Vulnerability in AOS-8 Controller/Mobility Conductor Web-Based Management Interface via the CLI Binaryalong with accounting controls for tracking and logging user activities and resource usage. | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:54:36 | Deep Dive |
| CVE-2025-37132 | Authenticated Remote Code Execution Vulnerability in AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface via Arbitrary File Write | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:53:17 | Deep Dive |
| CVE-2025-37148 | Kernel Panic triggered by Modified Ethernet Frames leads to Denial of Service Vulnerability | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | Medium | 6.5 | 2025-10-14 16:43:35 | Deep Dive |
| CVE-2025-37147 | Secure Boot Bypass allows for Compromise of Hardware Root of Trust | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.1 | 2025-10-14 16:42:57 | Deep Dive |
| CVE-2025-37146 | Unauthorized Filesystem Operations in System Firmware allow Authenticated Remote Code Execution | Hewlett Packard Enterprise (HPE) | ArubaOS (AOS) | High | 7.2 | 2025-10-14 16:42:31 | Deep Dive |
| CVE-2025-37149 | HPE ProLiant RL300 Gen11 Server 安全漏洞 | Hewlett Packard Enterprise (HPE) | ProLiant RL300 Gen11 Server | Medium | 6.0 | 2025-10-14 15:55:24 | Deep Dive |
| CVE-2025-37122 | Unauthenticated Reflected Cross-Site Scripting | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | Medium | 6.1 | 2025-09-17 19:31:20 | Deep Dive |
| CVE-2025-37125 | Broken access control vulnerability in Firewall Configuration Leads to Unauthorized Access to Internal Network Resources | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | High | 7.5 | 2025-09-16 22:32:04 | Deep Dive |
| CVE-2025-37123 | Authenticated Command Injection leads to Unauthorized Actions in CLI Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | High | 8.8 | 2025-09-16 22:30:31 | Deep Dive |
| CVE-2025-37124 | Unauthenticated Access Vulnerability allows Transit Traffic Misrouting in SD-WAN Edge Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | High | 8.6 | 2025-09-16 22:29:15 | Deep Dive |
| CVE-2025-37128 | Authenticated Arbitrary Process Termination allows potential System Disruption in ECOS | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | Medium | 6.8 | 2025-09-16 22:22:57 | Deep Dive |
| CVE-2025-37129 | Authenticated Remote Code Execution allows Exploit in Scripts Feature | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | Medium | 6.7 | 2025-09-16 22:22:05 | Deep Dive |
| CVE-2025-37127 | Authenticated Replay Attack contains Cryptographic Vulnerability | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | High | 7.2 | 2025-09-16 22:22:02 | Deep Dive |
| CVE-2025-37130 | Unrestricted Binary allows File Enumeration in Underlying Operating System | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | Medium | 6.5 | 2025-09-16 22:20:53 | Deep Dive |
| CVE-2025-37126 | Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Gateways Command Line Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | High | 7.2 | 2025-09-16 22:19:16 | Deep Dive |
| CVE-2025-37131 | Authenticated Arbitrary File Read allows Data Exposure in CLI Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking EdgeConnect SD-WAN Gateway | Medium | 4.9 | 2025-09-16 22:17:32 | Deep Dive |
| CVE-2025-37112 | Hard-Coded Encryption Keys found in System | Hewlett Packard Enterprise | HPE Telco Network Function Virtual Orchestrator | Medium | 6.0 | 2025-07-31 19:42:04 | Deep Dive |
| CVE-2025-37111 | Hard-Coded Authentication Keys found in System | Hewlett Packard Enterprise | HPE Telco Network Function Virtual Orchestrator | Medium | 6.0 | 2025-07-31 19:41:55 | Deep Dive |