{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-23817", "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0", "state": "PUBLISHED", "assignerShortName": "hpe", "dateReserved": "2026-01-16T15:22:38.202Z", "datePublished": "2026-03-11T03:14:18.534Z", "dateUpdated": "2026-03-11T15:45:06.318Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "eb103674-0d28-4225-80f8-39fb86215de0", "shortName": "hpe", "dateUpdated": "2026-03-11T03:14:18.534Z"}, "title": "Unauthenticated Open Redirect allows URL Manipulation in Web Interface", "affected": [{"vendor": "Hewlett Packard Enterprise (HPE)", "product": "AOS-CX", "versions": [{"status": "affected", "version": "10.17.0000", "lessThanOrEqual": "10.17.0001", "versionType": "semver"}, {"status": "affected", "version": "10.16.0000", "lessThanOrEqual": "10.16.1020", "versionType": "semver"}, {"status": "affected", "version": "10.13.0000", "lessThanOrEqual": "10.13.1101", "versionType": "semver"}, {"status": "affected", "version": "10.10.0000", "lessThanOrEqual": "10.10.1170", "versionType": "semver"}], "defaultStatus": "affected"}], "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of AOS-CX Switches could allow an unauthenticated remote attacker to redirect users to an arbitrary URL.", "supportingMedia": [{"type": "text/html", "base64": false, "value": "<p>A vulnerability in the web-based management interface of AOS-CX Switches could allow an unauthenticated remote attacker to redirect users to an arbitrary URL.</p>"}]}], "references": [{"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05027en_us&docLocale=en_US"}], "metrics": [{"format": "CVSS", "scenarios": [{"lang": "en", "value": "GENERAL"}], "cvssV3_1": {"version": "3.1", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "NONE", "baseSeverity": "MEDIUM", "baseScore": 6.5, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"}}], "credits": [{"lang": "en", "value": "This vulnerability was discovered by Christopher Simmelink through HPE Aruba Networking\u2019s Bug Bounty program.", "type": "reporter"}], "source": {"advisory": "HPESBNW05027", "discovery": "INTERNAL"}, "x_generator": {"engine": "Vulnogram 0.2.0"}}, "adp": [{"problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-601", "lang": "en", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')"}]}], "metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-03-11T15:44:48.565263Z", "id": "CVE-2026-23817", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T15:45:06.318Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-23817", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-03-11T15:44:48.565263Z"}}}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-601", "description": "CWE-601 URL Redirection to Untrusted Site ('Open Redirect')"}]}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-03-11T15:45:01.757Z"}}], "cna": {"title": "Unauthenticated Open Redirect allows URL Manipulation in Web Interface", "source": {"advisory": "HPESBNW05027", "discovery": "INTERNAL"}, "credits": [{"lang": "en", "type": "reporter", "value": "This vulnerability was discovered by Christopher Simmelink through HPE Aruba Networking\u2019s Bug Bounty program."}], "metrics": [{"format": "CVSS", "cvssV3_1": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "scenarios": [{"lang": "en", "value": "GENERAL"}]}], "affected": [{"vendor": "Hewlett Packard Enterprise (HPE)", "product": "AOS-CX", "versions": [{"status": "affected", "version": "10.17.0000", "versionType": "semver", "lessThanOrEqual": "10.17.0001"}, {"status": "affected", "version": "10.16.0000", "versionType": "semver", "lessThanOrEqual": "10.16.1020"}, {"status": "affected", "version": "10.13.0000", "versionType": "semver", "lessThanOrEqual": "10.13.1101"}, {"status": "affected", "version": "10.10.0000", "versionType": "semver", "lessThanOrEqual": "10.10.1170"}], "defaultStatus": "affected"}], "references": [{"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05027en_us&docLocale=en_US"}], "x_generator": {"engine": "Vulnogram 0.2.0"}, "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of AOS-CX Switches could allow an unauthenticated remote attacker to redirect users to an arbitrary URL.", "supportingMedia": [{"type": "text/html", "value": "<p>A vulnerability in the web-based management interface of AOS-CX Switches could allow an unauthenticated remote attacker to redirect users to an arbitrary URL.</p>", "base64": false}]}], "providerMetadata": {"orgId": "eb103674-0d28-4225-80f8-39fb86215de0", "shortName": "hpe", "dateUpdated": "2026-03-11T03:14:18.534Z"}}}, "cveMetadata": {"cveId": "CVE-2026-23817", "state": "PUBLISHED", "dateUpdated": "2026-03-11T15:45:06.318Z", "dateReserved": "2026-01-16T15:22:38.202Z", "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0", "datePublished": "2026-03-11T03:14:18.534Z", "assignerShortName": "hpe"}, "dataVersion": "5.2"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*", "matchCriteriaId": "863AB573-0FB2-4B36-8CBD-8ADA5F49E4E8", "versionEndExcluding": "10.10.1180", "versionStartIncluding": "10.06.0000", "vulnerable": true}, {"criteria": "cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*", "matchCriteriaId": "8D55719C-E2F0-4575-92B7-940812B2BB6D", "versionEndExcluding": "10.13.1161", "versionStartIncluding": "10.13.0000", "vulnerable": true}, {"criteria": "cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*", "matchCriteriaId": "54891BB9-3C0A-48DE-ABFE-9AF7C00AF1BC", "versionEndExcluding": "10.16.1030", "versionStartIncluding": "10.16.0000", "vulnerable": true}, {"criteria": "cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*:*", "matchCriteriaId": "6B39A43F-2E7D-40CA-AB52-8F01C6DE7DC3", "versionEndExcluding": "10.17.1001", "versionStartIncluding": "10.17.0000", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the web-based management interface of AOS-CX Switches could allow an unauthenticated remote attacker to redirect users to an arbitrary URL."}, {"lang": "es", "value": "Una vulnerabilidad en la interfaz de gesti\u00f3n basada en web de los switches AOS-CX podr\u00eda permitir a un atacante remoto no autenticado redirigir a los usuarios a una URL arbitraria."}], "id": "CVE-2026-23817", "lastModified": "2026-05-13T20:45:42.987", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.5, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 3.6, "source": "security-alert@hpe.com", "type": "Secondary"}, {"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2026-03-11T04:17:35.810", "references": [{"source": "security-alert@hpe.com", "tags": ["Vendor Advisory"], "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05027en_us&docLocale=en_US"}], "sourceIdentifier": "security-alert@hpe.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-601"}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[10.17.0000,10.17.0001]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[10.16.0000,10.16.1020]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[10.13.0000,10.13.1101]"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[10.10.0000,10.10.1170]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "manual", "scores": [{"score": 100.0, "source": "manual"}]}, "original": {"product": "AOS-CX", "source": "cna", "vendor": "Hewlett Packard Enterprise (HPE)"}, "product": "arubaos-cx", "vendor": "hpe"}], "analysis": {"en": {"generated_at": "2026-03-17T15:14:28.501970+00:00", "value": {"mitigation_remediation": ["Check the HPE Support Portal for an AOS\u2011CX patch or firmware update that addresses the open\u2011redirect issue", "Apply the latest vendor patch or release as soon as it is available", "If a patch is not yet available, consider restricting access to the web interface by firewall rules or disabling the UI for untrusted users", "Monitor web\u2011interface logs for suspicious redirect activities and review user reports of unexpected URLs", "Keep general security hygiene by ensuring other known vulnerabilities are also patched"], "summary": {"action": "Patch Immediately", "impact": "Open Redirect"}, "threat_synthesis": {"affected_systems": "Affected systems are Hewlett Packard Enterprise AOS\u2011CX Switches. No specific product version information is provided in the CNA data, so owners should verify which firmware or software build is running.", "description_and_impact": "The vulnerability is an unauthenticated web\u2011based open redirect that allows a remote attacker to cause users of the AOS\u2011CX Switch web interface to be redirected to an arbitrary URL. This type of weakness (CWE\u2011601) can be abused for phishing or malicious script delivery, compromising user confidence and potentially leading to credential compromise if users click on a fake login page. The security impact is primarily the loss of integrity and trust of the web interface, without immediate denial of service or data exfiltration.", "risk_and_exploitability": "The CVSS v3 score of 6.5 indicates moderate severity. The EPSS score is less than 1%, suggesting a low probability of current exploitation, and the vulnerability is not listed in the CISA KEV catalog. Attackers only need unauthenticated access to the web interface, so the attack vector is remote over the network; however, the lack of higher severity or widespread exploitation data indicates that while the vulnerability is real, the likelihood of immediate impact is lower compared to higher\u2011score issues."}}}}, "created": "2026-03-11T11:38:01.294239+00:00", "updated": "2026-03-20T14:37:59.156196+00:00", "vendors": ["hpe", "hpe$PRODUCT$arubaos-cx"]}