CVE-2026-23810Channel Accessible by Non-Endpoint in Packard Enterprise HPE Aruba Networking Wireless Operating Systems

CWE-300Channel Accessible by Non-Endpoint3 documents3 sources
Severity
3.1LOWNVD
CNA4.3
EPSS
0.0%
top 90.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Hewlett Packard Enterprise HPE Aruba Networking Wireless Operating SystemsArubanetworks Arubaos
Timeline
PublishedMar 4

Description

A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access Point (AP) to classify the frame as group-addressed traffic and re-encrypt it using the Group Temporal Key (GTK) associated with the victim's BSSID. Successful exploitation may enable GTK-independent traffic injection and, when combined with a port-stealing technique, allows an attacker to redirect intercepted traffic to facilitate machine-in-the-

CVSS vector

CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:NExploitability: 1.6 | Impact: 1.4

Affected Packages2 packages

NVDarubanetworks/arubaos6.5.4.08.10.0.21+5

🔴Vulnerability Details

2
CVEList
Cross-BSSID GTK Re-encryption and Traffic Injection2026-03-04
GHSA
GHSA-m4hr-5g26-hjj4: A vulnerability in the packet processing logic may allow an authenticated attacker to craft and transmit a malicious Wi-Fi frame that causes an Access2026-03-04
CVE-2026-23810 — Channel Accessible by Non-Endpoint | cvebase