PT-2025-38094 · Hewlett Packardaruba Networking · Hpe Aruba Networking Sd-Wan Gateways

Published

2025-09-16

Updated

2025-09-17

CVE-2025-37124

CVSS v2.0

9.0

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:C

Name of the Vulnerable Software and Affected Versions HPE Aruba Networking SD-WAN Gateways (affected versions not specified)

Description A vulnerability in the HPE Aruba Networking SD-WAN Gateways could allow an unauthenticated remote attacker to bypass firewall protections. Successful exploitation could allow an attacker to route potentially harmful traffic through the internal network, leading to unauthorized access or disruption of services.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Protection Mechanism Failure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-693

Related Identifiers

BDU:2025-11497

CVE-2025-37124

Affected Products

Hpe Aruba Networking Sd-Wan Gateways

PT-2025-38094 · Hewlett Packardaruba Networking · Hpe Aruba Networking Sd-Wan Gateways

CVE-2025-37124

Weakness Enumeration

Related Identifiers

Affected Products

References · 8