CVE-2025-23053

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Published Jan 28, 2025

Summary

CVE-2025-23053 is a privilege escalation vulnerability that affects the web-based management interface of HPE Aruba Networking Fabric Composer. An authenticated low privilege user can exploit this flaw to alter the settings of a vulnerable system, elevating their privileges beyond their authorized level. This issue poses a significant risk to network security, particularly in environments where access control is not adequately managed. It is crucial for organizations using HPE Aruba Networking Fabric Composer to apply the available patch as soon as possible to mitigate this vulnerability.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2W6h--
https://www.cve.org/CVERecord?id=CVE-2025-23053
https://nvd.nist.gov/vuln/detail/CVE-2025-23053

Back to Vulnerability Database

CVE-2025-23053

CVSS 3.1 Score 6.5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations