CVE-2025-37162 identifies a command injection vulnerability in the command line interface (CLI) of Hewlett Packard Enterprise's Aruba Networking 100 Series Cellular Bridge, specifically version 10.7.0.0. The vulnerability allows an authenticated remote attacker to inject arbitrary commands into the device's underlying operating system, exploiting improper neutralization of special elements in command inputs (CWE-77). This flaw arises because the CLI fails to adequately sanitize user-supplied input before executing system commands, enabling attackers with valid credentials to escalate privileges and execute arbitrary code. The attack vector is network-based (AV:N), requiring low attack complexity (AC:L), but necessitates high privileges (PR:H) and no user interaction (UI:N). The vulnerability compromises confidentiality and integrity but does not affect availability. No public exploits have been reported yet, but the potential for misuse exists, especially in environments where these cellular bridges are deployed to provide network connectivity in remote or critical infrastructure settings. The lack of a patch link suggests that remediation may require vendor intervention or configuration changes. Given the device's role in bridging cellular networks, exploitation could lead to unauthorized access to sensitive network segments or interception of data flows.

For European organizations, exploitation of this vulnerability could lead to unauthorized command execution on critical network bridging devices, potentially compromising sensitive data confidentiality and integrity. Since these devices often serve as gateways in cellular network deployments, attackers could pivot into internal networks, disrupt secure communications, or manipulate network traffic. This risk is particularly acute for sectors relying on cellular connectivity for operational continuity, such as utilities, transportation, and emergency services. The requirement for authenticated access limits the attack surface but does not eliminate risk, especially if credential management is weak or insider threats exist. The absence of availability impact reduces the likelihood of denial-of-service conditions but does not diminish the severity of data compromise. European organizations with remote or distributed network infrastructures using HPE Aruba 100 Series Cellular Bridges should consider this vulnerability a significant risk to network security and data protection compliance.

To mitigate CVE-2025-37162, organizations should immediately audit and restrict access to the CLI of affected HPE Aruba 100 Series Cellular Bridge devices, ensuring only trusted administrators have authenticated access. Implement strong authentication mechanisms, such as multi-factor authentication, to reduce the risk of credential compromise. Monitor device logs and network traffic for unusual command execution patterns or unauthorized access attempts. Network segmentation should be employed to isolate cellular bridge devices from sensitive internal systems, limiting lateral movement opportunities. Until an official patch or firmware update is released by HPE, consider disabling remote CLI access where feasible or restricting it to secure management networks via VPN or dedicated management VLANs. Regularly review and update device configurations to follow security best practices and maintain an inventory of affected devices to prioritize remediation efforts. Engage with HPE support channels to obtain updates or workarounds addressing this vulnerability.