← volver
CVE-2025-37157

Authenticated Command Injection allows Unauthorized Command Execution in AOS-CX

CVSS 6.7 MEDIUMEPSS 0.6%CWE-78
A command injection vulnerability exists in the AOS-CX Operating System. Successful exploitation could allow an authenticated remote attacker to conduct a Remote Code Execution (RCE) on the affected system.
CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N
Productos afectados
Hewlett Packard Enterprise (HPE) · HPE Aruba Networkign AOS-CX

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04888en_us&docLocale=en_US