CVE-2025-37126— Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Gateways Command Line Interface

CVSS 7.2 · High EPSS 0.13% · P33 Updated Sep 17, 2025

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2025-37126

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Gateways Command Line Interface

Source: NVD (National Vulnerability Database)

Vulnerability Description

A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN Gateways Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as root on the underlying operating system.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

HPE Aruba Networking EdgeConnect SD-WAN Gateways 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

HPE Aruba Networking EdgeConnect SD-WAN Gateways是美国HPE公司的一款边缘网关设备。 HPE Aruba Networking EdgeConnect SD-WAN Gateways存在安全漏洞，该漏洞源于远程认证用户可在底层主机上运行任意命令，可能导致以root权限执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Hewlett Packard Enterprise (HPE)	HPE Aruba Networking EdgeConnect SD-WAN Gateway	9.5.0.0 ~ 9.5.3.6	-

II. Public POCs for CVE-2025-37126

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2025-37126

请登录查看更多情报信息。

Same Patch Batch · Hewlett Packard Enterprise (HPE) · 2025-09-16 · 9 CVEs total

CVE-2025-37123	8.8 HIGH	Authenticated Command Injection leads to Unauthorized Actions in CLI Interface
CVE-2025-37124	8.6 HIGH	Unauthenticated Access Vulnerability allows Transit Traffic Misrouting in SD-WAN Edge Inte
CVE-2025-37125	7.5 HIGH	Broken access control vulnerability in Firewall Configuration Leads to Unauthorized Acces
CVE-2025-37127	7.2 HIGH	Authenticated Replay Attack contains Cryptographic Vulnerability
CVE-2025-37128	6.8 MEDIUM	Authenticated Arbitrary Process Termination allows potential System Disruption in ECOS
CVE-2025-37129	6.7 MEDIUM	Authenticated Remote Code Execution allows Exploit in Scripts Feature
CVE-2025-37130	6.5 MEDIUM	Unrestricted Binary allows File Enumeration in Underlying Operating System
CVE-2025-37131	4.9 MEDIUM	Authenticated Arbitrary File Read allows Data Exposure in CLI Interface

IV. Related Vulnerabilities

Same product: HPE Aruba Networking EdgeConnect SD-WAN Gateway

Same vendor: Hewlett Packard Enterprise (HPE)

V. Comments for CVE-2025-37126

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2025-37126— Authenticated Remote Code Execution in HPE Aruba Networking EdgeConnect SD-WAN Gateways Command Line Interface

I. Basic Information for CVE-2025-37126

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2025-37126

III. Intelligence Information for CVE-2025-37126

Same Patch Batch · Hewlett Packard Enterprise (HPE) · 2025-09-16 · 9 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2025-37126

Leave a comment