Beyond security

Language

CVE Vulnerabilities

Posts & Pages

No results found for ""

Try different keywords or check spelling

Search in CVE database, posts & pages • Press ESC to close

High Severity Vulnerability

This vulnerability has been rated as High severity. Immediate action is recommended.

CVE-2025-37186

High

Low Medium High Critical

7.8

CVSS Score

Published: Jan 13, 2026

Last Modified: Jan 14, 2026

Vulnerability Description

A local privilege-escalation vulnerability has been discovered in the HPE Aruba Networking Virtual Intranet Access (VIA) client. Successful exploitation of this vulnerability could allow a local attacker to achieve arbitrary code execution with root privileges.

CVSS Metrics

Common Vulnerability Scoring System

Vector String:

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

L

Attack Complexity

L

Privileges Required

L

User Interaction

N

Scope

U

Confidentiality

H

Integrity

H

Availability

H

References & Resources

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04994en_us&docLocale=en_US
security-alert@hpe.com

Severity Details

7.8

out of 10.0

High

Key Information

Published Date: January 13, 2026

External Resources

NIST

National Vulnerability Database

Detailed vulnerability info

Official CVE record