CVE-2026-23593 | Unauthenticated Limited File Read allows Data Exposure in Web Interface
A vulnerability in the web-based management interface of HPE Aruba Networking Fabric Composer could allow an unauthenticated remote attacker to view some system files. Successful exploitation could allow an attacker to read files within the affected directory.
Conclusion & alert: CVE-2026-23593 is rated Moderate Risk (46.6/100): CVSS High severity, with low exploitation likelihood (EPSS 0.64%).Mandatory action: Review affected assets and schedule remediation.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
Exploit prediction scoring system (EPSS) score for CVE-2026-23593
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).