Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

EdgeConnect SD-WAN Orchestrator — Vulnerabilities & Security Advisories 25

All 25 CVE vulnerabilities found in EdgeConnect SD-WAN Orchestrator, with AI-generated Chinese analysis, references, and POCs.

Vendor: Hewlett Packard Enterprise (HPE)

CVE IDTitleCVSSSeverityPublished
CVE-2025-37181 Authenticated SQL Injection in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface 7.2 High2026-01-14
CVE-2025-37185 Authenticated Stored Cross-Site Scripting Vulnerabilities (XSS) in EdgeConnect SD-WAN Orchestrator Web Administration Interface 5.5 Medium2026-01-14
CVE-2025-37184 Unauthenticated Bypass Allows Multi-Factor Authentication Circumvention 9.8 Critical2026-01-14
CVE-2025-37183 Authenticated SQL Injection in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface 7.2 High2026-01-14
CVE-2025-37182 Authenticated SQL Injection in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface 7.2 High2026-01-14
CVE-2023-37440 Authenticated Server-Side Request Forgery (SSRF) Leading to Information Disclosure 5.5 Medium2023-08-22
CVE-2023-37439 Reflected Cross Site Scripting in EdgeConnect SD-WAN Orchestrator Web Management Interface 6.1 Medium2023-08-22
CVE-2023-37438 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37437 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37436 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37435 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37434 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37433 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37432 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37431 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37430 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37429 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface 6.5 Medium2023-08-22
CVE-2023-37428 Authenticated Remote Code Execution via Path Traversal in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface 7.2 High2023-08-22
CVE-2023-37427 Authenticated Remote Code Execution in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface 7.2 High2023-08-22
CVE-2023-37426 Shared SSH Static Host Keys in EdgeConnect SD-WAN Orchestrator 7.4 High2023-08-22
CVE-2023-37425 Unauthenticated Stored Cross-Site Scripting Vulnerability (XSS) in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface 8.0 High2023-08-22
CVE-2023-37424 Unauthenticated Remote Code Execution in EdgeConnect SD-WAN Orchestrator Web-Based Management Interface 8.1 High2023-08-22
CVE-2023-37423 Authenticated Stored Cross-Site Scripting Vulnerabilities (XSS) in EdgeConnect SD-WAN Orchestrator Web Administration Interface 8.1 High2023-08-22
CVE-2023-37422 Authenticated Stored Cross-Site Scripting Vulnerabilities (XSS) in EdgeConnect SD-WAN Orchestrator Web Administration Interface 8.1 High2023-08-22
CVE-2023-37421 Authenticated Stored Cross-Site Scripting Vulnerabilities (XSS) in EdgeConnect SD-WAN Orchestrator Web Administration Interface 8.1 High2023-08-22

All 25 known CVE vulnerabilities affecting EdgeConnect SD-WAN Orchestrator with full Chinese analysis, references, and POCs where available.