CVE-2026-44853

Published: Mag 12, 2026 Last Modified: Mag 12, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,2

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: high

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

Command injection vulnerabilities exist in the web-based management interface of AOS-8 and AOS-10 Operating Systems. Successful exploitation could allow an authenticated remote attacker to upload arbitrary files to the underlying operating system, potentially leading to remote code execution as a privileged user.

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesb…

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05048en_us&docLoca…

CVE-2026-44853

Description

Iscriviti alla newsletter