VDB

CVE-2026-23593

CVE-2026-23593 PUBLISHED CVSS 7.5 HIGH

A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an unauthenticated remote attacker to view some system files. Successful exploitation could allow an attacker to read files within the affected directory.

EPSS 0.05% · 16.4th percentile

Risk Scores

CVSS 3.1
7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS Score
0.05%
16.4th percentile

Affected Products

VendorProductVersions
Hewlett Packard Enterprise (HPE)HPE Aruba Networking Fabric Composer7.0.0, 7.0.0

Exploit Intelligence

Timeline

  • Jan 27, 2026 CVE Published
  • Jan 28, 2026 EPSS Score
  • Jan 28, 2026 PoC Published
  • Jan 30, 2026 EPSS Score
  • Jan 30, 2026 CVE Updated
  • Feb 2, 2026 EPSS Score
  • Feb 4, 2026 EPSS Score
  • Feb 7, 2026 EPSS Score
  • Feb 9, 2026 EPSS Score
  • Feb 12, 2026 EPSS Score
  • Feb 14, 2026 EPSS Score
  • Feb 17, 2026 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›