HIGHCVE-2026-23815Published Modified CNA hpe
CVE-2026-23815: Authenticated Command Injection found in AOS-CX Administrative CLI Command
A vulnerability in a custom binary used in AOS-CX Switches' CLI could allow an authenticated remote attacker with high privileges to perform command injection. Successful exploitation could allow an attacker to execute unauthorized commands.
Metrics
- CVSS v3.1
- 7.2
- Severity
- HIGH
- Fixed in
- —
- Affected Products
- 1
Affected packages
- Hewlett Packard Enterprise (HPE) / AOS-CX≤ 10.17.0001 · ≤ 10.16.1020 · ≤ 10.13.1101 · ≤ 10.10.1170
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HReferences