CVE-2025-37165

Published Jan 13, 2026

Last updated 16 days ago

CVSS high 7.5
Firmware

Overview

Description
A vulnerability in the router mode configuration of HPE Instant On Access Points exposed certain network configuration details to unintended interfaces. A malicious actor could gain knowledge of internal network configuration details through inspecting impacted packets.
Source
security-alert@hpe.com
NVD status
Deferred

Risk scores

CVSS 3.1

Type
Secondary
Base score
7.5
Impact score
3.6
Exploitability score
3.9
Vector string
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Severity
HIGH

Weaknesses

134c704f-9b21-4f2e-91b3-4a467353bcc0
CWE-200

Social media

Hype score
Not currently trending

  1. CVE-2025-37165, -37166: Multiple vulnerabilities in Aruba, 7.5 rating❗️ Vulnerabilities in Aruba HPE allow an attacker to perform a DoS or gain knowledge of the internal network configuration. Search at https://t.co/hv7QKSqxTR: 👉 Link: https://t.co/gqJeSunTWI https://t.c

    @Netlas_io

    19 Jan 2026

    482 Impressions

    4 Retweets

    2 Likes

    3 Bookmarks

    0 Replies

    0 Quotes

  2. 🚨 HPE Aruba Instant On Flaws Leak VLAN Data + Enable DoS via Crafted Packets (4 High-Severity CVEs) HPE disclosed four high-severity Aruba Instant On vulnerabilities (CVE-2025-37165/37166, CVE-2023-52340, CVE-2022-48839) that can expose VLAN configuration details and trigger

    @ThreatSynop

    15 Jan 2026

    63 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

  3. CVE-2025-37165 A vulnerability in the router mode configuration of HPE Instant On Access Points exposed certain network configuration details to unintended interfaces. A malicious a… https://t.co/SKkXo3zjJX

    @CVEnew

    13 Jan 2026

    145 Impressions

    0 Retweets

    0 Likes

    0 Bookmarks

    0 Replies

    0 Quotes

Related CVEs

  1. Penetration Testing engineers at Amazon have discovered a flaw where the camera system fails to properly handle data supplied in certain requests, causing a service disruption. The manufacturer has released patch firmware for the flaw, please refer to the manufacturer's report for details and workarounds.CVE-2024-54011
  2. A vulnerability in SenseLive X3050’s remote management service allows firmware retrieval and update operations to be performed without authentication or authorization. The service accepts firmware-related requests from any reachable host and does not verify user privileges, integrity of uploaded images, or the authenticity of provided firmware.CVE-2026-25775
  3. The Semtech LR11xx LoRa transceivers running early versions of firmware contains an information disclosure vulnerability in its firmware validation functionality. When a host issues a firmware validity check command via the SPI interface, the device decrypts the provided encrypted firmware package block-by-block to validate its integrity. However, the last decrypted firmware block remains uncleared in memory after the validation process completes. An attacker with access to the SPI interface can subsequently issue memory read commands to retrieve the decrypted firmware contents from this residual memory, effectively bypassing the firmware encryption protection mechanism. The attack requires physical access to the device's SPI interface.CVE-2025-14858
  4. Fortinet FortiClient EMS Improper Access Control VulnerabilityCVE-2026-35616
  5. A flaw has been found in Tenda AC5 15.03.06.47. This vulnerability affects the function formQuickIndex of the file /goform/QuickIndex of the component POST Request Handler. This manipulation of the argument PPPOEPassword causes stack-based buffer overflow. The attack may be initiated remotely. The exploit has been published and may be used.CVE-2026-4903

References

Sources include official advisories and independent security research.