Security researchers have identified a vulnerability in HPE Aruba Networking Private 5G Core that allows an attacker to bypass security policies. The flaw, described in the CERT‑FR alert CERTFR‑2026‑AVI‑0402, affects all versions of the platform older than 1.25.3.1. The issue is catalogued as CVE‑2026‑23818. According to the HPE Aruba security bulletin HPESBNW05032, released on 7 April 2026, the vulnerability could enable unauthorized access or configuration changes that violate established security controls. Users of affected deployments are urged to consult the vendor’s bulletin for patch information and apply the recommended updates promptly. The alert was issued on 8 April 2026 by the French national cyber‑security agency.
Summary of content from
Made by AI. If you spot anything of concern write us at contact@cybach.com. We’ll promptly correct irregularities.