CVE-2025-37125 – Broken access control vulnerability in Firewall Configuration Leads to Unauthorized Access to Internal Network Resources

CVE ID : CVE-2025-37125

Published : Sept. 16, 2025, 10:32 p.m. | 26 minutes ago

Description : A broken access control vulnerability exists in HPE Aruba Networking EdgeConnect OS (ECOS). Successful exploitation could allow an attacker to bypass firewall protections, potentially leading to unauthorized traffic being handled improperly

Severity: 7.5 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…