HPE AutoPass Vulnerability Enables Remote Authentication Bypass

HPE AutoPass Vulnerability Enables Remote Authentication Bypass

First seen 3 Mar 2026, 14:09 UTC Heise.DeGbhackersCyberpressCybersecuritynewsBleepingcomputer+8 82% similarity 36.9

Article Content

Browse articles
ThreatCluster

A critical vulnerability has been identified in the HPE AutoPass License Server (APLS) that allows remote attackers to bypass authentication. Discovered by Trend Micro's Zero-Day Initiative, the vulnerability is documented under CVE-2026-23600, which was published on March 2, 2026. Hewlett Packard Enterprise has issued a warning regarding this issue, although specific details have not been disclosed.

ThreatCluster AI

Timeline

2026-03-02
CVE-2026-23600 published
2026-03-03
HPE issues warning about APLS vulnerability
Recent
Trend Micro ZDI discovers the vulnerability

Community

Browse all →