CVE-2026-23809— MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection

CVSS 5.4 · Medium EPSS 0.03% · P9 Updated Apr 02, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2026-23809

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection

Source: NVD (National Vulnerability Database)

Vulnerability Description

A technique has been identified that adapts a known port-stealing method to Wi-Fi environments that use multiple BSSIDs. By leveraging the relationship between BSSIDs and their associated virtual ports, an attacker could potentially bypass inter-BSSID isolation controls. Successful exploitation may enable an attacker to redirect and intercept the victim's network traffic, potentially resulting in eavesdropping, session hijacking, or denial of service.

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

HPE Aruba Networking Wireless Operating System 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

HPE Aruba Networking Wireless Operating System是美国HPE公司的一个无线网络操作系统。 HPE Aruba Networking Wireless Operating System存在安全漏洞，该漏洞源于端口窃取方法可绕过BSSID间隔离控制，可能导致流量重定向和拦截，造成窃听或拒绝服务。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Hewlett Packard Enterprise (HPE)	HPE Aruba Networking Wireless Operating System (AOS-10 & AOS-8)	10.8.0.0	-

II. Public POCs for CVE-2026-23809

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2026-23809

请登录查看更多情报信息。

Same Patch Batch · Hewlett Packard Enterprise (HPE) · 2026-03-04 · 6 CVEs total

CVE-2026-23808	5.4 MEDIUM	Client Isolation Bypass via GTK Manipulation
CVE-2026-23601	5.4 MEDIUM	Frame Injection via Shared GTK Allows Traffic Spoofing and Client Compromise
CVE-2026-23812	4.3 MEDIUM	Security Boundary Bypass via Routing Node Impersonation
CVE-2026-23811	4.3 MEDIUM	Unauthorized Bi-Directional Traffic Interception via L2/L3 Manipulation
CVE-2026-23810	4.3 MEDIUM	Cross-BSSID GTK Re-encryption and Traffic Injection

IV. Related Vulnerabilities

Same product: HPE Aruba Networking Wireless Operating System (AOS-10 & AOS-8)

Same vendor: Hewlett Packard Enterprise (HPE)

V. Comments for CVE-2026-23809

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2026-23809— MAC Address Spoofing leads to Inter-BSSID Isolation Bypass Resulting in Traffic Redirection

I. Basic Information for CVE-2026-23809

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2026-23809

III. Intelligence Information for CVE-2026-23809

Same Patch Batch · Hewlett Packard Enterprise (HPE) · 2026-03-04 · 6 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2026-23809

Leave a comment