CVE-2026-23818
Open Redirect Vulnerability in HPE Aruba Networking Private 5G Core On-Prem
A vulnerability has been identified in the graphical user interface (GUI) of HPE Aruba Networking Private 5G Core On-Prem that could allow an attacker to abuse an open redirect vulnerability in the login flow using a crafted URL. Successful exploitation may redirect an authenticated user to an attacker-controlled server hosting a spoofed login page prompting the unsuspecting victim to give away their credentials, which could then be captured by the attacker, before being redirected back to the legitimate login page.
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Productos afectados
Hewlett Packard Enterprise (HPE) · Private 5G Core¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →