Vulnerability-Lookup

CVE-2025-37186 (GCVE-0-2025-37186)

Vulnerability from cvelistv5 – Published: 2026-01-13 20:16 – Updated: 2026-01-13 20:16

Title

Local Privilege Escalation Vulnerability in HPE Aruba Networking Virtual Intranet Access (VIA) Client for Linux

Summary

A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking Virtual Intranet Access (VIA) client. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges.

Severity ?

7.8 (High)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Assigner

hpe

References

URL

Tags

https://support.hpe.com/hpesc/public/docDisplay?d…

Impacted products

	Vendor	Product	Version
	Hewlett Packard Enterprise (HPE)	Virtual Intranet Access (VIA)	Affected: 4.0.0 , ≤ 4.7.5 (semver)

Credits

John Carroll

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "product": "Virtual Intranet Access (VIA)",
          "vendor": "Hewlett Packard Enterprise (HPE)",
          "versions": [
            {
              "lessThanOrEqual": "4.7.5",
              "status": "affected",
              "version": "4.0.0",
              "versionType": "semver"
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "value": "John Carroll"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cp\u003eA local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking Virtual Intranet Access (VIA) client. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges.\u003c/p\u003e"
            }
          ],
          "value": "A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking Virtual Intranet Access (VIA) client. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2026-01-13T20:16:48.113Z",
        "orgId": "eb103674-0d28-4225-80f8-39fb86215de0",
        "shortName": "hpe"
      },
      "references": [
        {
          "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04994en_us\u0026docLocale=en_US"
        }
      ],
      "source": {
        "advisory": "HPESBNW04994",
        "discovery": "EXTERNAL"
      },
      "title": "Local Privilege Escalation Vulnerability in HPE Aruba Networking Virtual Intranet Access (VIA) Client for Linux",
      "x_generator": {
        "engine": "Vulnogram 0.2.0"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0",
    "assignerShortName": "hpe",
    "cveId": "CVE-2025-37186",
    "datePublished": "2026-01-13T20:16:33.606Z",
    "dateReserved": "2025-04-16T01:28:25.381Z",
    "dateUpdated": "2026-01-13T20:16:48.113Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.2",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2025-37186\",\"sourceIdentifier\":\"security-alert@hpe.com\",\"published\":\"2026-01-13T21:15:50.480\",\"lastModified\":\"2026-01-14T16:25:40.430\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking Virtual Intranet Access (VIA) client. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-alert@hpe.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}]},\"references\":[{\"url\":\"https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04994en_us\u0026docLocale=en_US\",\"source\":\"security-alert@hpe.com\"}]}}"
  }
}

FKIE_CVE-2025-37186

Vulnerability from fkie_nvd - Published: 2026-01-13 21:15 - Updated: 2026-01-14 16:25

Severity ?

7.8 (High) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security-alert@hpe.com	https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04994en_us&docLocale=en_US

Impacted products

	Vendor	Product	Version

JSON

To clipboard

{
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking Virtual Intranet Access (VIA) client. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges."
    }
  ],
  "id": "CVE-2025-37186",
  "lastModified": "2026-01-14T16:25:40.430",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "security-alert@hpe.com",
        "type": "Secondary"
      }
    ]
  },
  "published": "2026-01-13T21:15:50.480",
  "references": [
    {
      "source": "security-alert@hpe.com",
      "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04994en_us\u0026docLocale=en_US"
    }
  ],
  "sourceIdentifier": "security-alert@hpe.com",
  "vulnStatus": "Awaiting Analysis"
}

CERTFR-2026-AVI-0042

Vulnerability from certfr_avis - Published: 2026-01-14 - Updated: 2026-01-14

De multiples vulnérabilités ont été découvertes dans les produits HPE Aruba Networking. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.

Solutions

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

L’éditeur précise que les versions ArubaOS 6.5.4.x, 8.6.x, 8.7.x, 8.8.x, 8.9.x, 8.11.x, 8.12.x 10.3.x, 10.5.x, 10.6.x et SD-WAN 8.6.0.4-2.2.x, 8.7.0.0-2.3.0.x sont en fin de maintenance (EoM) et ne bénéficient plus de mises à jour de sécurité.

Impacted products

Vendor	Product	Description
HPE Aruba Networking	Instant On	Instant On versions antérieures à 3.3.2.0
HPE Aruba Networking	EdgeConnect SD-WAN Orchestrator	EdgeConnect SD-WAN Orchestrator versions antérieures à 9.5.6
HPE Aruba Networking	Virtual Intranet Access	Virtual Intranet Access (VIA) versions antérieures à 4.7.6
HPE Aruba Networking	EdgeConnect SD-WAN Orchestrator	EdgeConnect SD-WAN Orchestrator versions antérieures à 9.6.1
HPE Aruba Networking	AOS	ArubaOS versions 10.7.x antérieures à 10.7.2.2
HPE Aruba Networking	AOS	ArubaOS versions 8.10.x antérieures à 8.10.0.21
HPE Aruba Networking	AOS	ArubaOS versions 10.4.x antérieures à 10.4.1.9
HPE Aruba Networking	AOS	ArubaOS versions 8.13.x antérieures à 8.13.1.1

References

Title

Publication Time

Tags

Bulletin de sécurité HPE Aruba Networking HPESBNW04987	2026-01-13	vendor-advisory
Bulletin de sécurité HPE Aruba Networking HPESBNW04994	2026-01-13	vendor-advisory
Bulletin de sécurité HPE Aruba Networking HPESBNW04988	2026-01-13	vendor-advisory
Bulletin de sécurité HPE Aruba Networking HPESBNW04992	2026-01-13	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Instant On versions ant\u00e9rieures \u00e0 3.3.2.0",
      "product": {
        "name": "Instant On",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    },
    {
      "description": "EdgeConnect SD-WAN Orchestrator versions ant\u00e9rieures \u00e0 9.5.6",
      "product": {
        "name": "EdgeConnect SD-WAN Orchestrator",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    },
    {
      "description": "Virtual Intranet Access (VIA) versions ant\u00e9rieures \u00e0 4.7.6",
      "product": {
        "name": "Virtual Intranet Access",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    },
    {
      "description": "EdgeConnect SD-WAN Orchestrator versions ant\u00e9rieures \u00e0 9.6.1",
      "product": {
        "name": "EdgeConnect SD-WAN Orchestrator",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    },
    {
      "description": "ArubaOS versions 10.7.x ant\u00e9rieures \u00e0 10.7.2.2",
      "product": {
        "name": "AOS",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    },
    {
      "description": "ArubaOS versions 8.10.x ant\u00e9rieures \u00e0 8.10.0.21",
      "product": {
        "name": "AOS",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    },
    {
      "description": "ArubaOS versions 10.4.x ant\u00e9rieures \u00e0 10.4.1.9",
      "product": {
        "name": "AOS",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    },
    {
      "description": "ArubaOS versions 8.13.x ant\u00e9rieures \u00e0 8.13.1.1",
      "product": {
        "name": "AOS",
        "vendor": {
          "name": "HPE Aruba Networking",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": "L\u2019\u00e9diteur pr\u00e9cise que les versions ArubaOS 6.5.4.x, 8.6.x, 8.7.x, 8.8.x, 8.9.x, 8.11.x, 8.12.x 10.3.x, 10.5.x, 10.6.x et SD-WAN 8.6.0.4-2.2.x, 8.7.0.0-2.3.0.x sont en fin de maintenance (EoM) et ne b\u00e9n\u00e9ficient plus de mises \u00e0 jour de s\u00e9curit\u00e9.",
  "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
  "cves": [
    {
      "name": "CVE-2025-37177",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37177"
    },
    {
      "name": "CVE-2025-37172",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37172"
    },
    {
      "name": "CVE-2023-52340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2023-52340"
    },
    {
      "name": "CVE-2025-37179",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37179"
    },
    {
      "name": "CVE-2025-37165",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37165"
    },
    {
      "name": "CVE-2025-37168",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37168"
    },
    {
      "name": "CVE-2025-37173",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37173"
    },
    {
      "name": "CVE-2025-37170",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37170"
    },
    {
      "name": "CVE-2026-37185",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-37185"
    },
    {
      "name": "CVE-2025-37169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37169"
    },
    {
      "name": "CVE-2025-37176",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37176"
    },
    {
      "name": "CVE-2025-37171",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37171"
    },
    {
      "name": "CVE-2026-37183",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-37183"
    },
    {
      "name": "CVE-2025-37174",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37174"
    },
    {
      "name": "CVE-2022-48839",
      "url": "https://www.cve.org/CVERecord?id=CVE-2022-48839"
    },
    {
      "name": "CVE-2025-37175",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37175"
    },
    {
      "name": "CVE-2026-37182",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-37182"
    },
    {
      "name": "CVE-2025-37178",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37178"
    },
    {
      "name": "CVE-2026-37184",
      "url": "https://www.cve.org/CVERecord?id=CVE-2026-37184"
    },
    {
      "name": "CVE-2025-37166",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37166"
    },
    {
      "name": "CVE-2025-37186",
      "url": "https://www.cve.org/CVERecord?id=CVE-2025-37186"
    }
  ],
  "initial_release_date": "2026-01-14T00:00:00",
  "last_revision_date": "2026-01-14T00:00:00",
  "links": [],
  "reference": "CERTFR-2026-AVI-0042",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2026-01-14T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Injection de code indirecte \u00e0 distance (XSS)"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Injection SQL (SQLi)"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits HPE Aruba Networking. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits HPE Aruba Networking",
  "vendor_advisories": [
    {
      "published_at": "2026-01-13",
      "title": "Bulletin de s\u00e9curit\u00e9 HPE Aruba Networking HPESBNW04987",
      "url": "https://csaf.arubanetworks.com/2026/hpe_aruba_networking_-_hpesbnw04987.txt"
    },
    {
      "published_at": "2026-01-13",
      "title": "Bulletin de s\u00e9curit\u00e9 HPE Aruba Networking HPESBNW04994",
      "url": "https://csaf.arubanetworks.com/2026/hpe_aruba_networking_-_hpesbnw04994.txt"
    },
    {
      "published_at": "2026-01-13",
      "title": "Bulletin de s\u00e9curit\u00e9 HPE Aruba Networking HPESBNW04988",
      "url": "https://csaf.arubanetworks.com/2026/hpe_aruba_networking_-_hpesbnw04988.txt"
    },
    {
      "published_at": "2026-01-13",
      "title": "Bulletin de s\u00e9curit\u00e9 HPE Aruba Networking HPESBNW04992",
      "url": "https://csaf.arubanetworks.com/2026/hpe_aruba_networking_-_hpesbnw04992.txt"
    }
  ]
}

GHSA-QP9G-XPHH-469W

Vulnerability from github – Published: 2026-01-13 21:31 – Updated: 2026-01-13 21:31

Details

Severity ?

7.8 (High)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2025-37186"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-01-13T21:15:50Z",
    "severity": "HIGH"
  },
  "details": "A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking Virtual Intranet Access (VIA) client. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges.",
  "id": "GHSA-qp9g-xphh-469w",
  "modified": "2026-01-13T21:31:46Z",
  "published": "2026-01-13T21:31:46Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2025-37186"
    },
    {
      "type": "WEB",
      "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04994en_us\u0026docLocale=en_US"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2025-37186 (GCVE-0-2025-37186)

FKIE_CVE-2025-37186

CERTFR-2026-AVI-0042

Solutions

GHSA-QP9G-XPHH-469W

Tags

Sightings

Nomenclature