CVE-2026-44872

Published: Mag 12, 2026 Last Modified: Mag 12, 2026

ExploitDB:

Other exploit source:

Google Dorks:

HIGH 7,2

Source: [email protected]

Attack Vector: network

Attack Complexity: low

Privileges Required: high

User Interaction: none

Scope: unchanged

Confidentiality: high

Integrity: high

Availability: high

Description

AI Translation Available

A command injection vulnerability exists in the web-based management interface of AOS-8 and AOS-10 Operating Systems. Successful exploitation could allow an authenticated remote attacker to place arbitrary files on the underlying filesystem of the affected device.

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesb…

https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05048en_us&docLoca…

CVE-2026-44872

Description

Iscriviti alla newsletter