exploitDog

GHSA-8hv5-jc7w-822h

Опубликовано: 17 сент. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 7.2

Описание

A vulnerability in the cryptographic logic used by HPE Aruba Networking EdgeConnect SD-WAN Gateways could allow an authenticated remote attacker to gain shell access. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system, potentially leading to unauthorized access and control over the affected systems.

A vulnerability in the cryptographic logic used by HPE Aruba Networking EdgeConnect SD-WAN Gateways could allow an authenticated remote attacker to gain shell access. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system, potentially leading to unauthorized access and control over the affected systems.

Ссылки

EPSS

Процентиль: 4%

0.0002

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-327

Связанные уязвимости

CVE-2025-37127

CVSS3: 7.2

nvd

5 месяцев назад

A vulnerability in the cryptographic logic used by HPE Aruba Networking EdgeConnect SD-WAN Gateways could allow an authenticated remote attacker to gain shell access. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying operating system, potentially leading to unauthorized access and control over the affected systems.

BDU:2025-11492

CVSS3: 7.2

fstec

5 месяцев назад

Уязвимость программно-аппаратного средства управления программно-определяемыми сетями HPE Aruba Networking EdgeConnect SD-WAN, связанная с использованием криптографических алгоритмов, содержащих дефекты, позволяющая нарушителю получить несанкционированный доступ к защищаемой информации и выполнить произвольные команды

EPSS

Процентиль: 4%

0.0002

Низкий

7.2 High

CVSS3

CVE ID

Дефекты

CWE-327