HPE Aruba Networking AOS-CX
Easy fix7 remedies
cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*
Easy fix7 remedies
- >= 10.16.0.0, <= 10.16.1000
- >= 10.15.0.0, <= 10.15.1020
- >= 10.14.0.0, <= 10.14.1050
- >= 10.13.0.0, <= 10.13.1090
- >= 10.10.0.0, <= 10.10.1160
HPE Aruba Networking AOS-CX Broken Access Control Vulnerability Allowing Sensitive Information Disclosure
Vulnerability
Patched
A broken access control vulnerability has been identified in the web-based management interface of HPE Aruba Networking AOS-CX. This vulnerability allows authenticated remote attackers with low privileges to view sensitive information. Successful exploitation could lead to unauthorized disclosure of sensitive data.
Impact
Exploitation of this vulnerability could result in the unauthorized disclosure of sensitive information.
Remediation
Users are advised to upgrade to AOS-CX version 10.16.1001 and above, 10.15.1030 and above, 10.14.1060 and above, 10.13.1101 and above, or 10.10.1170 and above. For assistance, contact HPE Services - Aruba Networking.
Added: Nov 18, 2025, 7:28 PM
Updated: Nov 18, 2025, 10:24 PM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
2.5exploitability
4.9remediation
8.3relevance
1.0threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.