CVE-2025-37162 identifies a command injection vulnerability in the command line interface (CLI) of Hewlett Packard Enterprise's Aruba Networking 100 Series Cellular Bridge devices, specifically version 10.7.0.0. This vulnerability allows an attacker who has authenticated access with high privileges to remotely inject arbitrary commands into the underlying operating system. The attack vector is network-based (AV:N), with low attack complexity (AC:L), but requires high privileges (PR:H) and no user interaction (UI:N). Successful exploitation compromises confidentiality and integrity by enabling unauthorized command execution, potentially leading to data exposure or manipulation. The vulnerability does not affect availability. No known exploits have been reported in the wild as of the publication date (November 18, 2025). The vulnerability was reserved in April 2025 and published in November 2025. The lack of available patches at the time of reporting suggests organizations must rely on access controls and monitoring until vendor updates are released. The affected product is used to provide cellular bridging capabilities, often in enterprise or critical infrastructure environments, making the vulnerability significant for operational security.

For European organizations, exploitation of this vulnerability could lead to unauthorized control over network bridging devices, potentially exposing sensitive data traversing cellular networks or enabling lateral movement within internal networks. Confidentiality and integrity of communications could be compromised, especially in sectors relying on cellular bridging for remote connectivity, such as utilities, transportation, and emergency services. Although availability is not directly impacted, the loss of control over these devices could indirectly disrupt network operations. The requirement for authenticated access limits the attack surface but insider threats or compromised credentials could facilitate exploitation. The absence of known exploits reduces immediate risk but does not preclude targeted attacks. Organizations with extensive deployments of HPE Aruba 100 Series Cellular Bridges in Europe should consider this vulnerability a moderate operational risk requiring prompt attention.

1. Immediately restrict CLI access to trusted administrators using network segmentation and strong authentication mechanisms such as multi-factor authentication (MFA). 2. Monitor device logs and network traffic for unusual command execution patterns or unauthorized access attempts. 3. Implement strict credential management policies to prevent credential compromise, including regular password changes and least privilege principles. 4. Apply vendor patches or firmware updates as soon as they become available; maintain close communication with HPE for updates. 5. Consider deploying network intrusion detection systems (NIDS) tuned to detect command injection signatures or anomalous CLI activity. 6. Conduct regular security audits and penetration tests focusing on the cellular bridge infrastructure. 7. If patching is delayed, evaluate temporary compensating controls such as disabling remote CLI access or using VPNs with strict access controls.