Overview

Three critical vulnerabilities are affecting HPE Telco Unified OSS Console and HPE Telco Service Orchestrator. Exploitation of these vulnerabilities may allow an attacker to execute remote code.

Description

HPE Aruba Networking Access Points are affected by vulnerabilities tracked as CVE-2025-24813, CVE-2025-29774, and CVE-2025-29775 with CVSS scores of 9.8, 9.1, and 9.1, respectively. The vulnerabilities results from original implementation of partial PUT used a temporary file based on the user provided file name and path with the path separator replaced by ".”, Improper Verification of Cryptographic Signature through the SignedInfo references and Improper Verification of Cryptographic Signature due to the manipulation of the DigestValue element within the XML structure. The vulnerabilities allow remote Server-Side Request Forgery (SSRF), Local Denial of Service (DoS), Remote Denial of Service (DoS), Local Buffer Overflow, Remote Buffer Overflow, Local Input Validation, and Remote Code Execution on the affected device.

Impact

Successful exploitation of these vulnerabilities may allow the attackers to take control of the affected system.

Solution

HP has released security patches for these vulnerabilities. Users and administrators are encouraged to apply necessary updates.

References

• 1. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04850en_us&docLocale=en_US
• 2. https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04854en_us&docLocale=en_US