5 matches found
CVE-2025-27084
A vulnerability in the Captive Portal of an AOS-10 GW and AOS-8 Controller/Mobility Conductor could allow a remote attacker to conduct a reflected cross-site scripting XSS attack. Successful exploitation could enable the attacker to execute arbitrary script code in the victim's browser within the...
CVE-2025-27084
creationtimestamp| type| source ---|---|--- 2025-04-08 16:46:22+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10936 2025-04-08 19:51:32+00:00| seen| https://t.me/cvedetector/22482...
CVE-2025-27084 Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal (CP) of an AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-based Management Interface
A vulnerability in the Captive Portal of an AOS-10 GW and AOS-8 Controller/Mobility Conductor could allow a remote attacker to conduct a reflected cross-site scripting XSS attack. Successful exploitation could enable the attacker to execute arbitrary script code in the victim's browser within the...
CVE-2025-27084 Reflected Cross-Site Scripting (XSS) Vulnerability in Captive Portal (CP) of an AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-based Management Interface
A vulnerability in the Captive Portal of an AOS-10 GW and AOS-8 Controller/Mobility Conductor could allow a remote attacker to conduct a reflected cross-site scripting XSS attack. Successful exploitation could enable the attacker to execute arbitrary script code in the victim's browser within the...
CVE-2025-27084
The CVE-2025-27084 issue concerns the Captive Portal in HPE AOS devices (AOS-10 GW and AOS-8 Controller/Mobility Conductor). Connected sources confirm a reflected cross-site scripting (XSS) vulnerability that could allow a remote attacker to execute arbitrary script code in a victim’s browser wit...