Remote Code Execution Vulnerability in HPE Insight Remote Support
CVE-2025-37099

9.8CRITICAL

Key Information:

Vendor

HP

Vendor
CVE Published:
1 July 2025

Badges

đź“° News Worthy

What is CVE-2025-37099?

A serious remote code execution vulnerability has been identified in HPE Insight Remote Support that could allow an attacker to execute arbitrary code on affected systems. This vulnerability affects versions prior to v7.15.0.646, posing risks for organizations relying on HPE's services for monitoring and reporting. It is crucial for users to update their products to the latest version to mitigate potential threats.

Affected Version(s)

Insight Remote Support 0

News Articles

Hewlett Packard Enterprise Directory Traversal Remote Code Execution Vulnerability (CVE-2025-37099)

- This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hewlett Packard Enterprise Insight Remote Support. Authentication is not required to exploit this vulnerability.

3 weeks ago

Hewlett Packard Enterprise Directory Traversal Remote Code Execution Vulnerability (CVE-2025-37099)

- This vulnerability allows remote attackers to execute arbitrary code on affected installations of Hewlett Packard Enterprise Insight Remote Support. Authentication is not required to exploit this vulnerability.

3 weeks ago

CVE-2025-37099 HPE Insight Remote Support processAttachmentDataStream path traversal

A vulnerability was found in HPE Insight Remote Support. It has been classified as very critical. This vulnerability is uniquely identified as CVE-2025-37099. It is recommended to upgrade the affected component.

4 weeks ago

References

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • đź“°

    First article discovered by VulDB

  • Vulnerability Reserved

.
CVE-2025-37099 : Remote Code Execution Vulnerability in HPE Insight Remote Support