HPE Aruba Networking AOS-CX
Easy fix5 remedies
cpe:2.3:o:hpe:arubaos-cx:*:*:*:*:*:*:*
Easy fix5 remedies
- <= 10.17.0001
- <= 10.16.1020
- <= 10.13.1160
- <= 10.10.1170
HPE Aruba Networking AOS-CX Unauthenticated Open Redirect Vulnerability
Vulnerability
Patched
An open redirect vulnerability has been identified in the web-based management interface of HPE Aruba Networking AOS-CX Switches. This vulnerability allows an unauthenticated remote attacker to redirect users to an arbitrary URL. The issue affects AOS-CX software versions 10.17.0001 and below, 10.16.1020 and below, 10.13.1160 and below, and 10.10.1170 and below.
Impact
Exploitation of this vulnerability could lead to unauthorized URL redirection, potentially facilitating phishing attacks or other malicious activities by directing users to harmful websites.
Remediation
Users are advised to upgrade to AOS-CX 10.17.1001 and above, AOS-CX 10.16.1030 and above, AOS-CX 10.13.1161 and above, or AOS-CX 10.10.1180 and above. For assistance, contact HPE Services - HPE Aruba Networking or visit the HPE Networking Support Portal.
Added: Mar 11, 2026, 4:20 AM
Updated: Mar 11, 2026, 4:20 AM
Vulnerability Rating
Custom Algorithm
spread
2.6impact
0.2exploitability
5.8remediation
7.9relevance
3.8threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.