Primary

Context

HPE Aruba Networking 100 Series Cellular Bridge Unauthenticated Remote Denial-of-Service Vulnerability

Vulnerability

A denial-of-service vulnerability has been identified in the web-based management interface of the HPE Aruba Networking 100 Series Cellular Bridge, specifically in versions AOS-10.7.1.1 and below. This vulnerability allows an unauthenticated remote attacker to crash the system, disrupt network operations, and cause the device to fail to reboot without manual intervention.

Impact

Exploitation of this vulnerability can lead to a system crash, causing the device to become unresponsive and requiring manual intervention to restore functionality, thereby disrupting network operations.

Remediation

Users are advised to upgrade the HPE Aruba Networking 100 Series Cellular Bridge firmware to version AOS-10.7.2.0 or above. This vulnerability can be downloaded from the HPE Networking Support Portal.

Added: Nov 18, 2025, 8:19 PM

Updated: Nov 18, 2025, 8:19 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

1.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HPE Aruba Networking 100 Series Cellular Bridge Unauthenticated Remote Denial-of-Service Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating