× EU ICT Risk Newsroom DORA News On the Horizon ΑΙ Cybersec Space Cyber Alerts GDPR News EU CERT Advisories ICT Governance ESA/NCAs Contact

HPE Instant On devices: Hard-coded credentials allow admin access

Newsroom - 21 July 2025 - 06:25

Hewlett-Packard Enterprise (HPE) has released security updates to address a critical security flaw affecting Instant On Access Points. This could allow an attacker to bypass authentication and gain administrative access to susceptible systems. The vulnerability, tracked as CVE-2025-37103, carries a CVSS score of 9.8 out of a maximum of 10.0. Hard-coded login credentials were found in HPE.

HPE Instant On devices: Hard-coded credentials allow admin access

Hewlett-Packard Enterprise (HPE) has released security updates to address a critical security flaw affecting Instant On Access Points. This could allow an attacker to bypass authentication and gain administrative access to susceptible systems.

The vulnerability, tracked as CVE-2025-37103, carries a CVSS score of 9.8 out of a maximum of 10.0.

HPE Instant On vulnerability admin access

HPE Instant On devices: Hard-coded credentials allow admin access

Subscribe for EU DORA and Banking ICT Risk news and insights