CNNVD-202509-2294 Information
CNNVD ID
CNNVD-202509-2294
Related CVE
- CNNVD Published: 2025-09-16
Description (Chinese)
Hewlett Packard Enterprise EdgeConnect SD-WAN是美国Hewlett Packard Enterprise公司的为零信任和 SASE 提供安全的网络基础。它包括一流的 SD-WAN 和下一代防火墙,可提供无与伦比的体验质量和高级安全性。 Hewlett Packard Enterprise EdgeConnect SD-WAN存在安全漏洞,该漏洞源于命令行界面中内置脚本执行功能缺乏适当安全措施,可能导致执行任意命令。
Description (English)
Hewlett Packard Enterprise Engineering SD-WAN is the United States company Hewlett Packard Enterprise’s secure network base for Zero Trust and SASE. It includes first-class SD-WAN and next-generation firewalls, which provide unparalleled quality of experience and high security. There is a security loophole in Hewlett Packard Enterprise EdgeConnect SD-WAN, which stems from the lack of appropriate security measures for the implementation of built-in scripts in the command line interface, which may lead to the execution of arbitrary orders.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
慧与科技
Published
2025-09-16
Last Modified
2026-02-24
References
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04943en_us&docLocale=en_US https://access.redhat.com/security/cve/cve-2025-37129
Patch
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04943en_us&docLocale=en_US
Share on: