CVE-2025-37165

Summary

A vulnerability in the router mode configuration of HPE Instant On Access Points exposed certain network configuration details to unintended interfaces. A malicious actor could gain knowledge of internal network configuration details through inspecting impacted packets.

Affected Software

VendorProductVersion RangeStatus
Hewlett Packard Enterprise (HPE)Instant On3.0.0.0 <= 3.3.1.0affected

Weaknesses

ADP Enrichment

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: yes
    • Technical Impact: partial

References