exploitDog

CVE-2025-37163

Опубликовано: 18 нояб. 2025

Источник: nvd

CVSS3: 7.2

EPSS Низкий

Описание

A command injection vulnerability has been identified in the command line interface of the HPE Aruba Networking Airwave Platform. An authenticated attacker could exploit this vulnerability to execute arbitrary operating system commands with elevated privileges on the underlying operating system.

Ссылки

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04971en_us&docLocale=en_US
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:arubanetworks:airwave:*:*:*:*:*:*:*:*

Версия до 8.3.0.5 (исключая)

EPSS

Процентиль: 36%

0.0015

Низкий

7.2 High

CVSS3

Дефекты

CWE-77

CWE-78

Связанные уязвимости

GHSA-j565-rm3x-jxcx

CVSS3: 7.2

github

3 месяца назад

A command injection vulnerability has been identified in the command line interface of the HPE Aruba Networking Airwave Platform. An authenticated attacker could exploit this vulnerability to execute arbitrary operating system commands with elevated privileges on the underlying operating system.

EPSS

Процентиль: 36%

0.0015

Низкий

7.2 High

CVSS3

Дефекты

CWE-77

CWE-78