CVE-2025-37095 – A directory traversal vulnerability in HPE Stor... (How to Fix)

Q: What is the severity of CVE-2025-37095?

CVE-2025-37095 has a CVSS score of 9.8 (CRITICAL). A directory traversal vulnerability in HPE StoreOnce Software allows attackers to access sensitive files outside the intended directory. This affects HPE StoreOnce systems running vulnerable software versions, potentially exposing configuration files, logs, or other sensitive data.

📋 TL;DR

A directory traversal vulnerability in HPE StoreOnce Software allows attackers to access sensitive files outside the intended directory. This affects HPE StoreOnce systems running vulnerable software versions, potentially exposing configuration files, logs, or other sensitive data.

💻 Affected Systems

Products:

HPE StoreOnce Software

Versions: Specific versions not detailed in advisory; check HPE advisory for exact affected versions.

Operating Systems: HPE StoreOnce appliance OS

Default Config Vulnerable: ⚠️ Yes

Notes: Affects HPE StoreOnce backup appliances; exact version details should be verified against HPE advisory.

📦 What is this software?

Storeonce System by Hpe

View all CVEs affecting Storeonce System →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Complete system compromise through access to configuration files containing credentials, enabling lateral movement or data exfiltration.

🟠

Likely Case

Unauthorized access to sensitive system files, potentially exposing configuration details, logs, or other restricted information.

🟢

If Mitigated

Limited impact with proper network segmentation and access controls preventing external exploitation.

🌐 Internet-Facing: HIGH - Directory traversal vulnerabilities can be exploited remotely without authentication.

🏢 Internal Only: MEDIUM - Internal attackers could still exploit this, but requires network access to the system.

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ⚠️ Yes

Complexity: LOW

Directory traversal vulnerabilities typically have low exploitation complexity and may not require authentication.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Check HPE advisory for specific patched versions

Vendor Advisory: https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbst04847en_us&docLocale=en_US

Restart Required: Yes

Instructions:

1. Review HPE advisory for affected versions. 2. Download appropriate patch from HPE support portal. 3. Apply patch following HPE StoreOnce update procedures. 4. Restart system as required.

🔧 Temporary Workarounds

Network Segmentation

all

Restrict network access to StoreOnce systems to only trusted management networks.

Access Control Lists

all

Implement strict firewall rules limiting which IPs can communicate with StoreOnce management interfaces.

🧯 If You Can't Patch

Isolate StoreOnce systems on dedicated management VLANs with strict access controls.
Implement network monitoring for unusual file access patterns to StoreOnce systems.

🔍 How to Verify

Check if Vulnerable:

Check StoreOnce software version against HPE advisory; if running affected version, system is vulnerable.

Check Version:

Check via StoreOnce web interface or CLI; exact command depends on StoreOnce version.

Verify Fix Applied:

Verify software version has been updated to patched version specified in HPE advisory.

📡 Detection & Monitoring

Log Indicators:

Unusual file access patterns in StoreOnce logs
Multiple failed directory traversal attempts

Network Indicators:

HTTP requests with directory traversal patterns (../ sequences) to StoreOnce management interface

SIEM Query:

Search for HTTP requests containing '../' patterns to StoreOnce IP addresses on management ports.

📊 Metadata

CVE ID: CVE-2025-37095

CVSS v3 Score: 9.8 (CRITICAL)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-22

EPSS Score: 0.24% exploit probability (47.2th percentile)

Published: June 2, 2025

Last Updated: July 2, 2025

🔗 References

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbst04847en_us&docLocale=en_US Vendor Advisory

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-37095, you might also want to check these: