CVE-2025-37165
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2026-01-13
Last updated on: 2026-03-02
Assigner: Hewlett Packard Enterprise (HPE)
Description
Description
A vulnerability in the router mode configuration of HPE Instant On Access Points exposed certain network configuration details to unintended interfaces. A malicious actor could gain knowledge of internal network configuration details through inspecting impacted packets.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| hpe | instant_on_access_points | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-200 | The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability exists in the router mode configuration of HPE Instant On Access Points, where certain network configuration details are exposed to unintended interfaces. A malicious actor could exploit this by inspecting impacted packets to gain knowledge of internal network configuration details.
How can this vulnerability impact me? :
The vulnerability could allow a malicious actor to obtain sensitive internal network configuration information, which could be used to facilitate further attacks or unauthorized access within the network.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70