loader image
Network administrator applies HPE Aruba patches to glowing access point on office desk, holographic code streams and shield
HPE Aruba Patches Instant On High-Severity Flaws

HPE Aruba patches have been issued to resolve a trio of high-severity vulnerabilities affecting the company’s Instant On access points and routers. The flaws—identified as CVE-2025-37166, CVE-2025-37165, and CVE-2026-0625—pose threats ranging from denial-of-service (DoS) attacks to potential data leakage. HPE Networking urged users to apply the latest firmware update to mitigate the risks immediately.

According to a recent disclosure, the vulnerabilities could allow remote attackers to either crash the devices or extract sensitive information. These issues impact various Instant On models, which are widely deployed in small and medium-sized businesses. The flaws follow previous disclosures, including CVE-2022-48839, CVE-2023-52340, CVE-2024-31466, and CVE-2024-31467, highlighting ongoing risks in embedded network hardware.

Security analysts recommend routine patching as a core defense strategy. The latest HPE Aruba patches are critical for organizations relying on Instant On devices for wireless connectivity and network management.

HPE Aruba Patches High-Severity DoS and Data Leak Flaws in Instant On Devices

Write a Reply or Comment

Your email address will not be published. Required fields are marked *