CVE-2022-37932

HIGH EXPLOITED NUCLEI

HPE OfficeConnect 1820, 1850, and 1920S - Authentication Bypass

Title source: llm

Exploitation Summary

CVE-2022-37932 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including Tim-Hoekstra. A Nuclei detection template is also available.

AI-analyzed exploit summary This repository documents an authentication bypass vulnerability in HP 1920 Series Smart Managed Switches (CVE-2022-37932). The vulnerability allows unauthenticated attackers to change the admin password via a POST request to `/login/default_password_cfg.lua` due to missing authentication checks.

Description

A potential security vulnerability has been identified in Hewlett Packard Enterprise OfficeConnect 1820, 1850, and 1920S Network switches. The vulnerability could be remotely exploited to allow authentication bypass. HPE has made the following software updates to resolve the vulnerability in Hewlett Packard Enterprise OfficeConnect 1820, 1850 and 1920S Network switches versions: Prior to PT.02.14; Prior to PC.01.22; Prior to PO.01.21; Prior to PD.02.22;

Exploits (1)

nomisec WRITEUP

by Tim-Hoekstra · remote

https://github.com/Tim-Hoekstra/CVE-2022-37932

View Code ZIP pw:eip

This repository documents an authentication bypass vulnerability in HP 1920 Series Smart Managed Switches (CVE-2022-37932). The vulnerability allows unauthenticated attackers to change the admin password via a POST request to `/login/default_password_cfg.lua` due to missing authentication checks.

Classification

Writeup 95%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Reliable

Target: HP 1920 Series Smart Managed Switches (Firmware PD.02.21)

No auth needed

Prerequisites: Network access to the vulnerable switch · Knowledge of the target IP address

MITRE ATT&CK

T1110.001 - Password Guessing T1078 - Valid Accounts

devstral-2 · analyzed Feb 19, 2026 Full analysis →

Nuclei Templates (1)

HP Switch - Authentication Bypass

HIGHVERIFIEDby Phulelouch

Shodan: html:"HPE OfficeConnect"

References (1)

Core 1

Core References

Vendor Advisory

https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04383en_us

Scores

CVSS v3 8.8

EPSS 0.0264

EPSS Percentile 83.6%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

VulnCheck KEV 2025-09-25

Status published

Products (19)

hpe/officeconnect_1820_j9979a_firmware < pt.02.14

hpe/officeconnect_1820_j9980a_firmware < pt.02.14

hpe/officeconnect_1820_j9981a_firmware < pt.02.14

hpe/officeconnect_1820_j9982a_firmware < pt.02.14

hpe/officeconnect_1820_j9983a_firmware < pt.02.14

hpe/officeconnect_1820_j9984a_firmware < pt.02.14

hpe/officeconnect_1850_24g_2xgt_firmware < pc.01.22

hpe/officeconnect_1850_24g_2xgt_poe\+_firmware < pc.01.22

hpe/officeconnect_1850_2xgt\/spf\+_firmware < po.01.21

hpe/officeconnect_1850_48g_4xgt_firmware < pc.01.22

... and 9 more

Published Dec 12, 2022

Tracked Since Feb 18, 2026