CVE-2025-37101

216.73.216.36

· Published 26/06/2025 06:15 · Modified 26/06/2025 18:57

Labels: CVE-2025-37101 2025-06-26 CVE-2025-37101 CWE-269 [email protected]

Essential information

Published: 26/06/2025 06:15
Modified: 26/06/2025 18:57
Author: —
Creator: —
CVSS: 8.7 HIGH (v3.1)
CISA KEV: No
CWE: —
CVSS vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:N/I:H/A:H

CVSS metrics

Description

A potential security vulnerability has been identified in HPE OneView for VMware vCenter (OV4VC). This vulnerability could be exploited allowing an attacker with read only privilege to cause Vertical Privilege Escalation (operator can perform admin actions).

NVD status

Status: Awaiting Analysis — CVE has been recently published to the CVE List and has been received by the NVD.
Source: [email protected]
NVD: View on NVD

Affected products (CPE)

Product	CPE
hpe / hpe oneview	`cpe:2.3:a:hpe:hpe_oneview::::::::`
vmware / vmware vcenter	`cpe:2.3:a:vmware:vmware_vcenter::::::::`