ANAVEM
FR

#authentication-bypass

2 articles

News2

Enterprise network switch with security warning in server room
Critical
VulnerabilitiesCVE-2025-37157, CVE-2025-37158

HPE Patches Five Critical AOS-CX Flaws: RCE, Privilege Escalation and Session Hijacking

HPE released emergency patches on March 10, 2026 for five critical and high-severity vulnerabilities in Aruba Networking AOS-CX, including two command injection flaws enabling remote code execution, an SSH privilege escalation, a web session hijacking bug, and a port ACL bypass on CX 9300 switches. Immediate patching is required for all enterprise Aruba CX deployments.

Mar 10, 06:30 PM2 min
WordPress admin dashboard displaying user management interface in dark cybersecurity setting
Critical
Vulnerabilities

WordPress Plugin Bug Lets Hackers Create Admin Accounts

Critical flaw in User Registration plugin affects 60,000+ WordPress sites, enabling unauthorized admin account creation.

Mar 5, 07:44 PM2 min