exploitDog

CVE-2025-37179

Опубликовано: 13 янв. 2026

Источник: nvd

CVSS3: 5.3

EPSS Низкий

Описание

Multiple out-of-bounds read vulnerabilities were identified in a system component responsible for handling certain data buffers. Due to insufficient validation of maximum buffer size values, the process may attempt to read beyond the intended memory region. Under specific conditions, this can result in a crash of the affected process and a potential denial-of-service of the compromised process.

Ссылки

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04987en_us&docLocale=en_US
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*

Версия от 8.6.0.0 (включая) до 8.10.0.21 (исключая)

cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*

Версия от 8.11.0.0 (включая) до 8.13.1.1 (исключая)

EPSS

Процентиль: 12%

0.00039

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-125

Связанные уязвимости

GHSA-fphr-mvhj-5mr3

CVSS3: 5.3

github

25 дней назад

Multiple out-of-bounds read vulnerabilities were identified in a system component responsible for handling certain data buffers. Due to insufficient validation of maximum buffer size values, the process may attempt to read beyond the intended memory region. Under specific conditions, this can result in a crash of the affected process and a potential denial-of-service of the compromised process.

EPSS

Процентиль: 12%

0.00039

Низкий

5.3 Medium

CVSS3

Дефекты

CWE-125