SB2026031234 - Multiple vulnerabilities in HPE Aruba Networking AOS-CX

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2026031234

SB2026031234 - Multiple vulnerabilities in HPE Aruba Networking AOS-CX

Published: March 12, 2026

Security Bulletin ID SB2026031234
Severity
High
Patch available
YES
Number of vulnerabilities 5
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

High 20% Low 80%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 5 secuirty vulnerabilities.


1) Weak password recovery mechanism for forgotten password (CVE-ID: CVE-2026-23813)

The vulnerability allows a remote attacker to compromise the affected system.

The vulnerability exists due to an error in the password reset functionality in the administrative web interface. A remote non-authenticated attacker can recover password for admin accounts and gain unauthorized access to the system.


2) Improper neutralization of argument delimiters in a command (CVE-ID: CVE-2026-23814)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation in CLI when handling command arguments. A local user can execute arbitrary commands with elevated privileges. 


3) OS command injection (CVE-ID: CVE-2026-23815)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation in a custom binary in CLI. A local privileged user can execute arbitrary OS commands and escalate privileges on the device. 


4) OS command injection (CVE-ID: CVE-2026-23816)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation in CLI. A local privileged user can execute arbitrary OS commands and escalate privileges on the device. 


5) Open redirect (CVE-ID: CVE-2026-23817)

The vulnerability allows a remote attacker to redirect victims to arbitrary URL.

The vulnerability exists due to improper sanitization of user-supplied data. A remote attacker can create a link that leads to a trusted website, however, when clicked, redirects the victim to arbitrary domain.

Successful exploitation of this vulnerability may allow a remote attacker to perform a phishing attack and steal potentially sensitive information.


Remediation

Install update from vendor's website.

References