CVE-2025-37124HIGH 8.6EPSS p28.7%

CVE-2025-37124CVE-2025-37124

Description

A vulnerability in the HPE Aruba Networking SD-WAN Gateways could allow an unauthenticated remote attacker to bypass firewall protections. Successful exploitation could allow an attacker to route potentially harmful traffic through the internal network, leading to unauthorized access or disruption of services.

Scoring

CVSS 3.18.6 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
EPSS0.37% probability of exploitation · percentile 28.7% · 2026-06-19T12:03:05Z
Published2025-09-16
Last modified2026-04-15

Underlying weaknesses· 1

CWE-693

References

  1. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04943en_us&docLocale=en_US

1

TypeTargetConfidenceTier
WeaknessProtection Mechanism Failurecwe-6930%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-37123
CVE
CVE-2025-23060
CVE
CVE-2025-20221
CVE
CVE-2026-23818
CVE
CVE-2025-37107
CVE
CVE-2025-37106
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.