Security Advisory

CVE-2025-37132

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-10-14 16:53:16

Last updated 2026-02-26 17:47:31

Assigner hpe

State PUBLISHED

Description

An arbitrary file write vulnerability exists in the web-based management interface of both the AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to upload arbitrary files and execute arbitrary commands on the underlying operating system.

← Browse all CVEs View on cve.org ↗