Security Advisory

CVE-2025-23055

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-28 17:11:38

Last updated 2025-03-13 13:39:21

Assigner hpe

State PUBLISHED

Description

A vulnerability in the web management interface of HPE Aruba Networking Fabric Composer could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack. If successfully exploited, a threat actor could run arbitrary script code in a victims web browser within the context of the compromised interface.

← Browse all CVEs View on cve.org ↗