CVE-2026-23600

CRITICAL

HPE AutoPass License Server - Auth Bypass

Title source: llm
STIX 2.1

Description

A remote authentication bypass vulnerability  exists in HPE AutoPass License Server (APLS).

References (1)

Scores

CVSS v4 10.0
EPSS 0.0020
EPSS Percentile 42.4%
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact total

Details

CWE
CWE-287
Status published
Published Mar 02, 2026
Tracked Since Mar 02, 2026