cbcvebase.
CVE-2025-25040
published 2025-03-18

CVE-2025-25040: A vulnerability has been identified in the port ACL functionality of AOS-CX software running on the HPE Aruba Networking CX 9300 Switch Series only and…

PriorityP413low3.3CVSS 3.1
AVLACLPRLUINSUCLINAN
EPSS
0.14%
3.4th percentile
A vulnerability has been identified in the port ACL functionality of AOS-CX software running on the HPE Aruba Networking CX 9300 Switch Series only and affects: - AOS-CX 10.14.xxxx : All patches - AOS-CX 10.15.xxxx : 10.15.1000 and below The vulnerability is specific to traffic originated by the CX 9300 switch platform and could allow an attacker to bypass ACL rules applied to routed ports on egress. As a result, port ACLs are not correctly enforced, which could lead to unauthorized traffic flow and violations of security policies. Egress VLAN ACLs and Routed VLAN ACLs are not affected by this vulnerability.

Affected

2 ranges
VendorProductVersion rangeFixed in
hewlett_packard_enterpriseaos-cx10.14.0000 – <=10.14.1040
hewlett_packard_enterpriseaos-cx10.15.0000 – <=10.15.1000
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.