{"id":76123,"date":"2025-09-24T21:10:12","date_gmt":"2025-09-24T21:10:12","guid":{"rendered":""},"modified":"2025-11-02T02:09:43","modified_gmt":"2025-11-02T08:09:43","slug":"cve-2025-37124-unauthenticated-remote-firewall-bypass-on-hpe-aruba-networking-sd-wan-gateways","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-37124-unauthenticated-remote-firewall-bypass-on-hpe-aruba-networking-sd-wan-gateways\/","title":{"rendered":"CVE-2025-37124: Unauthenticated Remote Firewall Bypass on HPE Aruba Networking SD-WAN Gateways<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

The vulnerability identified as CVE-2025-37124 is a major cybersecurity concern affecting HPE Aruba Networking SD-WAN Gateways. Unauthenticated remote attackers can exploit this vulnerability to bypass firewall protections, potentially leading to unauthorized access and disruption of services. This vulnerability is extremely critical<\/a> because it exposes internal networks to harmful traffic which can compromise system integrity and result in data leakage. The impact of this vulnerability underscores the importance of timely patching and the use of additional security<\/a> measures such as Web Application Firewalls (WAF) or Intrusion Detection Systems (IDS).<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-37124
\nSeverity: High (CVSS 8.6)
\nAttack Vector: Network
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: Unauthorized access, service disruption, and potential system<\/a> compromise or data leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n