CVE-2025-37156
3 documents3 sources
Severity
6.8MEDIUM
EPSS
0.1%
top 77.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Timeline
PublishedNov 18
Description
A platform-level denial-of-service (DoS) vulnerability exists in ArubaOS-CX software. Successful exploitation of this vulnerability could allow an attacker with administrative access to execute specific code that renders the switch non-bootable and effectively non-functional.
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:HExploitability: 2.3 | Impact: 4.0