| CVE-2026-23818 | Open Redirect Vulnerability in HPE Aruba Networking Private 5G Core On-Prem | Hewlett Packard Enterprise (HPE) | Private 5G Core | High | 8.8 | 2026-04-07 12:18:12 | Deep Dive |
| CVE-2026-23817 | Unauthenticated Open Redirect allows URL Manipulation in Web Interface | Hewlett Packard Enterprise (HPE) | AOS-CX | Medium | 6.5 | 2026-03-11 03:14:19 | Deep Dive |
| CVE-2026-23816 | Authenticated Command Injection found in admin AOS-CX CLI command | Hewlett Packard Enterprise (HPE) | AOS-CX | High | 7.2 | 2026-03-11 03:13:25 | Deep Dive |
| CVE-2026-23815 | Authenticated Command Injection found in AOS-CX Administrative CLI Command | Hewlett Packard Enterprise (HPE) | AOS-CX | High | 7.2 | 2026-03-11 03:12:30 | Deep Dive |
| CVE-2026-23814 | Authenticated Command Injection found in AOS-CX CLI Command | Hewlett Packard Enterprise (HPE) | AOS-CX | High | 8.8 | 2026-03-11 03:11:34 | Deep Dive |
| CVE-2026-23813 | Authentication Bypass in Web Interface allows Unauthenticated Admin Password Reset | Hewlett Packard Enterprise (HPE) | AOS-CX | Critical | 9.8 | 2026-03-11 03:08:43 | Deep Dive |
| CVE-2026-23812 | Security Boundary Bypass via Routing Node Impersonation | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating Systems (AOS-8 & AOS-10) | Medium | 4.3 | 2026-03-04 16:13:48 | Deep Dive |
| CVE-2026-23811 | Unauthorized Bi-Directional Traffic Interception via L2/L3 Manipulation | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating Systems (AOS-8 & AOS-10) | Medium | 4.3 | 2026-03-04 16:12:33 | Deep Dive |
| CVE-2026-23810 | Cross-BSSID GTK Re-encryption and Traffic Injection | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating Systems (AOS-8 & AOS-10) | Medium | 4.3 | 2026-03-04 16:11:36 | Deep Dive |
| CVE-2026-23809 | MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS-10 & AOS-8) | Medium | 5.4 | 2026-03-04 16:10:03 | Deep Dive |
| CVE-2026-23808 | Client Isolation Bypass via GTK Manipulation | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS-10 & AOS-8) | Medium | 5.4 | 2026-03-04 16:09:18 | Deep Dive |
| CVE-2026-23601 | Frame Injection via Shared GTK Allows Traffic Spoofing and Client Compromise | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Wireless Operating System (AOS-10 & AOS-8) | Medium | 5.4 | 2026-03-04 16:07:43 | Deep Dive |
| CVE-2026-23600 | HPE AutoPass License Server 安全漏洞 | Hewlett Packard Enterprise (HPE) | HPE AutoPass License Server (APLS) | - | - | 2026-03-02 14:18:08 | Deep Dive |
| CVE-2026-23599 | Local Privilege Escalation Vulnerability in HPE Aruba Networking Clear Pass Policy Manager OnGuard for Linux | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | High | 7.8 | 2026-02-17 23:04:36 | Deep Dive |
| CVE-2026-23598 | Unauthenticated Information Disclosure in application API allows sensitive system information exposure | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Private 5G Core | Medium | 6.5 | 2026-02-17 20:47:21 | Deep Dive |
| CVE-2026-23597 | Unauthenticated Information Disclosure in application API allows sensitive system information exposure | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Private 5G Core | Medium | 6.5 | 2026-02-17 20:46:45 | Deep Dive |
| CVE-2026-23596 | Unauthenticated Improper Access Control in management API allows unauthorized service disruption | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Private 5G Core | Medium | 6.5 | 2026-02-17 20:46:13 | Deep Dive |
| CVE-2026-23595 | Unauthenticated Authentication Bypass in application API allows unauthorized administrative account creation | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Private 5G Core | High | 8.8 | 2026-02-17 20:45:44 | Deep Dive |
| CVE-2026-23593 | Unauthenticated Limited File Read allows Data Exposure in Web Interface | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Fabric Composer | High | 7.5 | 2026-01-27 17:58:36 | Deep Dive |
| CVE-2026-23592 | Insecure File Handling allows Remote Code Execution in Backup Functionality | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking Fabric Composer | High | 7.2 | 2026-01-27 17:57:57 | Deep Dive |