CNNVD-202510-1937 Information

CNNVD ID

CNNVD-202510-1937

Related CVE

CVE-2025-37141

• CNNVD Published: 2025-10-14

Description (Chinese)

HPE Aruba Networking EdgeConnect OS是美国HPE公司的一个操作系统。 HPE Aruba Networking EdgeConnect OS存在安全漏洞，该漏洞源于CLI二进制文件存在任意文件下载漏洞，可能导致经过身份验证的恶意行为者下载任意文件。

Description (English)

HPE Aruba Networking EdgeConnect OS is an operating system of the United States company HPE. There is a security loophole in HPE Aruba Networking EdgeConnect OS, which stems from an arbitrary download loophole of the CLI binary file, which could lead to the downloading of any document by an identified malicious actor.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

HPE

Published

2025-10-14

Last Modified

2026-02-24

References

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04957en_us&docLocale=en_US https://access.redhat.com/security/cve/cve-2025-37141

Patch

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04957en_us&docLocale=en_US