CVE Vulnerabilities

CVE-2025-37110

Insecure Storage of Sensitive Information

Published: Jul 31, 2025 | Modified: Jul 31, 2025
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
RedHat/V2
RedHat/V3
Ubuntu

A vulnerability was discovered in the storage policy for certain sets of sensitive credential information in the HPE Telco Network Function Virtual Orchestrator. Successful Exploitation could lead to unauthorized parties gaining access to sensitive system information.

Weakness

The product stores sensitive information without properly limiting read or write access by unauthorized actors.

References