HPE Aruba VIA Client RCE and Arbitrary File Overwrite Vulnerabilities (CVE-2024-3661/CVE-2025-25041)

Critical Vulnerability Information Vulnerability Title HPESBNW04841 rev.1: Multiple Vulnerabilities in HPE Aruba Networking Virtual Intranet Access (VIA) Client CVSS Score CVE-2024-3661: 7.1 CVE-2025-25041: 5.5 Affected Products HPE Aruba Networking VIA client for Microsoft Windows, macOS, Linux, and iOS. Versions: 4.7.0 and earlier Vulnerability Details 1. Unauthorized Remote Code Execution allows Unauthorized Access in Network Interface Configuration (CVE-2024-3661) - Severity: High - Description: A vulnerability exists in the DHCP protocol within the network configuration service, allowing an unauthenticated remote attacker to intercept VPN traffic. Successful exploitation of this vulnerability could enable an attacker to read, corrupt, or potentially modify network traffic intended to be protected by the VPN. 2. Arbitrary File Overwrite in HPE Aruba Networking Virtual Intranet Access (VIA) Client Microsoft Windows Client (CVE-2025-25041) - Severity: Medium - Description: A vulnerability exists in the HPE Aruba Networking VIA client that allows a malicious user to overwrite arbitrary files, leading to a Denial of Service (DoS) condition in the Windows operating system. This vulnerability does not affect Linux and Android-based clients. Remediation Upgrade to versions listed in the HPE Aruba Networking VIA version list: - For Linux, macOS, iOS, and Microsoft Windows clients: version 4.7.2 or later. - For Microsoft Windows clients: version 4.7.2 or later. Notes The vulnerabilities described in this document do not affect the HPE Aruba Networking VIA client on the Android platform. There are no workarounds available for these vulnerabilities.

Goal Reached Thanks to every supporter — we hit 100%!

HPE Aruba VIA Client RCE and Arbitrary File Overwrite Vulnerabilities (CVE-2024-3661/CVE-2025-25041)