PT-2025-38095 · Hewlett Packardaruba Networking · Hpe Aruba Networking Edgeconnect Sd-Wan
Unknown Contributor
·
Published
2025-09-16
·
Updated
2025-09-17
·
CVE-2025-37125
CVSS v2.0
7.8
High
| Vector | AV:N/AC:L/Au:N/C:C/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
HPE Aruba Networking EdgeConnect OS (ECOS) (affected versions not specified)
Description
A broken access control issue exists in HPE Aruba Networking EdgeConnect OS (ECOS). Successful exploitation may allow an attacker to bypass firewall protections, potentially leading to improper handling of unauthorized traffic.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Access Control
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Hpe Aruba Networking Edgeconnect Sd-Wan