Description

A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation may enable an attacker to redirect and intercept the victim's network traffic, potentially resulting in eavesdropping, session hijacking, or denial of service.

INFO

Published Date :

2026-03-04T16:10:02.829Z

Last Modified :

2026-04-01T16:22:10.710Z

Source :

hpe
AFFECTED PRODUCTS

The following products are affected by CVE-2026-23809 vulnerability.

Vendors Products
Arubanetworks
  • 7010
  • 7030
  • 7205
  • 7210
  • 7220
  • 7240xm
  • 7280
  • 9004
  • 9004-lte
  • 9012
  • 9106
  • 9114
  • 9240
  • Ap-634
  • Ap-635
  • Ap-654
  • Ap-655
  • Arubaos
Hpe
  • Aruba Networking Wireless Operating Systems
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2026-23809.

URL Resource
https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05026en_us&docLocale=en_US cve-icon cve-icon
Login to claim this CVE

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact