HPE AOS-CX REST Interface Sensitive Information Disclosure Vulnerability

Vulnerability

A vulnerability exists in the AOS-CX REST interface, allowing an authenticated remote attacker with low privileges to access sensitive information. Exploitation of this vulnerability could enable the attacker to read encrypted credentials of other users on the switch, potentially leading to unauthorized access or data breaches.

Impact

Exploitation could result in unauthorized access to encrypted user credentials, which may be decrypted and used to gain further access or cause data breaches.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

5.2

remediation

0.0

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

HPE AOS-CX REST Interface Sensitive Information Disclosure Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating