CVE-2026-23596

MEDIUM EPSS 15.2%

Published Feb 17, 20264mo ago · Modified Jun 17, 20261w ago

6.5 CVSS 3.1

Medium

Published Feb 17, 2026 4mo ago

Last Modified Jun 17, 2026 1w ago

Description

A vulnerability in the management API of the affected product could allow an unauthenticated remote attacker to trigger service restarts. Successful exploitation could allow an attacker to disrupt services and negatively impact system availability.

CVSS Details

Base Score

6.5

Exploitability

2.8

Impact

3.6

Vector string

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector Adjacent

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Unchanged

Confidentiality None

Integrity None

Availability High

Threat Intelligence

EPSS Exploit Probability

15.2% percentile

Exploit & Patch Status

No Known Exploit

Patch Available

Weaknesses 1

CWE-400 Uncontrolled Resource Consumption Resource Mgmt

Affected Products 1

Vendor	Product	Version	Range
hpe	aruba_networking_private_5g_core	*	≥1.24.3.0 – ≤1.24.3.3

References 1

support.hpe.com https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05002en_us&docLocale=en_US

PatchVendor Advisory

Remediation

support.hpe.com https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05002en_us&docLocale=en_US

PatchVendor Advisory