By Sead Fadilpašić
Publication Date: 2026-03-11 16:25:00
- HPE patches five vulnerabilities in Aruba AOS-CX
- A critical flaw (CVE-2026-23813) allowed the administrator password to be reset
- The company urges mitigations until solutions are applied
Hewlett-Packard Enterprise (HPE) warned its customers after discovering five vulnerabilities in its products, including one that cybercriminals could use to take over certain endpoints.
In a recently published security advisory, HPE said it addressed a critical authentication bypass flaw that can be used by unauthenticated attackers in low-complexity attacks, to reset the manager. passwords. The bug is now tracked as CVE-2026-23813 and has a severity score of 9.1/10 (critical).
Affects Aruba Networking AOS-CX Operating systema cloud-native network operating system built for the HPE CX Series Campus and data center switch hardware.
Article continues below.
Patches and solutions
“A vulnerability has been identified in the web-based management interface of AOS-CX switches that could…
