Management API Vulnerability in HPE Product
CVE-2026-23596

6.5MEDIUM

Key Information:

Vendor: HP (HP)
Status: HP Aruba Networking Private 5g Core
Vendor: CVE Published:; 17 February 2026

What is CVE-2026-23596?

A vulnerability in the management API of HPE products allows an unauthenticated remote attacker to initiate service restarts. This potential exploitation could lead to disruption of essential services, affecting the overall system availability and reliability.

Affected Version(s)

HPE Aruba Networking Private 5G Core 1.24.3.0 <= 1.24.3.4

References

https://support.hpe.com/hpesc/public/docDisplay?docId=hpe...

CVSS V3.1

Score:

6.5

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 17, 2026
Vulnerability Reserved
Jan 14, 2026

Credit

Communication Security Establishments (CSE)

CVE-2026-23596 Data

JSON

HP (HP)

What is CVE-2026-23596?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit