CVE Daily

CVE-2025-37106

An authentication bypass and disclosure of information vulnerability exists in H...

High CVSS 7.3

Overview

An authentication bypass and disclosure of information vulnerability exists in HPE AutoPass License Server (APLS) prior to 9.18.

CWE: CWE-287 Published: 2025-07-16T18:15:24.527
Risk analysis

This vulnerability is rated 🟠 HIGH.

  • CVSS: 7.3 (HIGH)
  • Detected tags: unauth_access (tag impact: HIGH)

Recommended actions:

  • Enforce authentication/authorization; reduce default endpoint exposure.

Recommended tools

Tags