cvedb.io
CVE-2026-23595
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2026-02-17T21:22:15.757 · Last modified 2026-06-17T10:21:48.270

Summary

An authentication bypass in the application API allows an unauthorized administrative account to be created. A remote attacker could exploit this vulnerability to create privileged user accounts. Successful exploitation could allow an attacker to gain administrative access, modify system configurations, and access or manipulate sensitive data.

Affected products

hpe — aruba_networking_private_5g_core

Does this affect you?

Add your gear to cvedb and we'll alert you only when hpe ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.