Primary

Context

HPE Instant On Access Points Network Configuration Exposure Vulnerability

Vulnerability

A vulnerability exists in the router mode configuration of HPE Instant On Access Points running software version 3.3.1.0 and below. This vulnerability allows the unintentional exposure of certain network configuration details to unintended interfaces. A malicious actor could inspect affected packets to gain knowledge of internal network configurations.

Impact

Exploitation of this vulnerability could lead to unauthorized knowledge of internal network configuration details.

Remediation

Users are advised to upgrade to HPE Networking Instant On software version 3.3.2.0 or above. For HPE Networking Instant On Access Points, the update will be applied automatically starting the week of December 10, 2025. Manual upgrades can be initiated via the Instant On app or web portal after the release date.

Added: Jan 13, 2026, 8:30 PM

Updated: Jan 13, 2026, 8:30 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

7.4

remediation

7.7

relevance

2.0

threat

0.0

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HPE Instant On Access Points Network Configuration Exposure Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating