Hewlett Packard Enterprise Hpe Networking Instant On vulnerabilities
2 known vulnerabilities affecting hewlett_packard_enterprise/hpe_networking_instant_on.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2025-37103P2CRITICALCVSS 9.8≥ 3.2.0.0, ≤ 3.2.0.12025-07-08
CVE-2025-37103 [CRITICAL] CWE-798 CVE-2025-37103: Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone
Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system.
nvd
CVE-2025-37102P3HIGHCVSS 7.2≥ 3.2.0.0, ≤ 3.2.0.12025-07-08
CVE-2025-37102 [HIGH] CWE-77 CVE-2025-37102: An authenticated command injection vulnerability exists in the Command line interface of HPE Network
An authenticated command injection vulnerability exists in the Command line interface of HPE Networking Instant On Access Points.
A successful exploitation could allow a remote attacker with elevated privileges to execute arbitrary commands on the underlying operating system as a highly privileged user.
nvd