Aos-cx

This hub aggregates every CVE we track for Aos-cx, a product in the networking infrastructure space. Use it to gauge the current risk picture and drill into individual advisories.

Severity distribution

Monthly trend

The 15 most recently published vulnerabilities affecting Aos-cx.

• CVE-2026-23817Unauthenticated Open Redirect allows URL Manipulation in Web Interface6.5Mar 11, 2026
• CVE-2026-23816Authenticated Command Injection found in admin AOS-CX CLI command7.2Mar 11, 2026
• CVE-2026-23815Authenticated Command Injection found in AOS-CX Administrative CLI Command7.2Mar 11, 2026
• CVE-2026-23814Authenticated Command Injection found in AOS-CX CLI Command8.8Mar 11, 2026
• CVE-2026-23813Authentication Bypass in Web Interface allows Unauthenticated Admin Password Reset9.8Mar 11, 2026
• CVE-2025-27080Authenticated Sensitive Information Disclosure exposes Credentials in AOS-CX Command Line Interface6.0Mar 18, 2025
• CVE-2025-25042Authenticated Access Control Vulnerability allows Sensitive Information Disclosure in AOS-CX REST Interface4.3Mar 18, 2025
• CVE-2025-25040Failure to Properly Enforce Port ACLs on CPU generated packets in CX 9300 Switches3.3Mar 18, 2025
• CVE-2024-54010Unauthenticated Traffic Handling Flaw Allows Packet Leakage on HPE Aruba Networking CX 10000 series switches3.4Jan 8, 2025
• CVE-2022-23688Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of t...4.3Sep 6, 2022
• CVE-2022-23690A vulnerability in the web-based management interface of AOS-CX could allow a remote unauthenticated attacker to fingerprint the exact version AOS-CX running on the switch. This allows an attacker ...5.3Sep 6, 2022
• CVE-2022-23689Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of t...4.3Sep 6, 2022
• CVE-2022-23691A vulnerability exists in certain AOS-CX switch models which could allow an attacker with access to the recovery console to bypass normal authentication. A successful exploit allows an attacker to ...6.8Sep 6, 2022
• CVE-2022-23687Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of t...4.3Sep 6, 2022
• CVE-2022-23686Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of t...4.3Sep 6, 2022