CVE-2025-37103

Critical CVSS: 9.8

Hard-coded login credentials were found in HPE Networking Instant On Access Points, allowing anyone with knowledge of it to bypass normal device authentication. Successful exploitation could allow a remote attacker to gain administrative access to the system.

Vendor

Product

CWE

CWE-798

Yayın Tarihi

2025-07-08 20:15:26

Güncelleme

2025-07-10 13:18:53

Source Identifier

security-alert@hpe.com

KEV Date Added

Kategoriler

CWE-798 CRITICAL 2025

Referanslar

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04894en_us&docLocale=en_US