Unrated severityNVD Advisory· Published Jan 13, 2026· Updated Jan 13, 2026

Out-of-Bounds Read Vulnerabilities Leading to Process Crash in AOS-8 Operating System

CVE-2025-37178

Description

Multiple out-of-bounds read vulnerabilities were identified in a system component responsible for handling certain data buffers. Due to insufficient validation of maximum buffer size values, the process may attempt to read beyond the intended memory region. Under specific conditions, this can result in a crash of the affected process and a potential denial-of-service of the compromised process.

Affected products

Hewlett Packard Enterprise (HPE)/ArubaOS (AOS)v5
Range: 8.12.0.0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

support.hpe.com/hpesc/public/docDisplaymitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000