← Back

CVE-2021-25141

nvd nist
Published: Feb 9, 2021Modified: Nov 21, 2024

JSON object

Loading...
4.4
Vector
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H
Exploitability: 0.8 / Impact: 3.6
Source: NVD

Description

A security vulnerability has been identified in in certain HPE and Aruba L2/L3 switch firmware. A data processing error due to improper handling of an unexpected data type in user supplied information to the switch's management interface has been identified. The data processing error could be exploited to cause a crash or reboot in the switch management interface and/or possibly the switch itself leading to local denial of service (DoS). The user must have administrator privileges to exploit this vulnerability.

Affected (15)

Arubanetworks
11 products
Aruba 5406r Zl2 Firmware
Aruba 5412r Zl2 Firmware
Aruba 3810m Firmware
Aruba 2930m Firmware
Aruba 2930f Firmware
Aruba 2920 Firmware
Aruba 2540 Firmware
Aruba 2530ya Firmware
Aruba 3800 Firmware
Aruba 2620 Firmware
Aruba 2530yb Firmware
Hpe
4 products
8200 Zl Firmware
6200 Yl Firmware
3500 Firmware
3500 Yl Firmware
Configuration A
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 5406r Zl2 Firmware
Before kb.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 5406r Zl2
All versions
Configuration B
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 5412r Zl2 Firmware
Before kb.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 5412r Zl2
All versions
Configuration C
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 3810m Firmware
Before kb.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 3810m
All versions
Configuration D
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 2930m Firmware
Before wc.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 2930m
All versions
Configuration E
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 2930f Firmware
Before wc.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 2930f
All versions
Configuration F
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 2920 Firmware
Before wb.16.10.0011
Running on/withPlatform Versions
Arubanetworks
Aruba 2920
All versions
Configuration G
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 2540 Firmware
Before yc.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 2540
All versions
Configuration H
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 2530ya Firmware
Before ya.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 2530ya
All versions
Configuration I
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 3800 Firmware
Before ka.16.04.0022
Running on/withPlatform Versions
Arubanetworks
Aruba 3800
All versions
Configuration J
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 2620 Firmware
Before ra.16.04.0022
Running on/withPlatform Versions
Arubanetworks
Aruba 2620
All versions
Configuration K
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
8200 Zl Firmware
Before k.15.18.0024
Running on/withPlatform Versions
Hpe
8200 Zl
All versions
Configuration L
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
6200 Yl Firmware
Before k.15.18.0024
Running on/withPlatform Versions
Hpe
6200 Yl
All versions
Configuration M
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
3500 Firmware
Before k.16.02.0032
Running on/withPlatform Versions
Hpe
3500
All versions
Configuration N
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
3500 Yl Firmware
Before k.16.02.0032
Running on/withPlatform Versions
Hpe
3500 Yl
All versions
Configuration O
1 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Aruba 2530yb Firmware
Before yb.16.10.0012
Running on/withPlatform Versions
Arubanetworks
Aruba 2530yb
All versions

References (2)

Source: security-alert@hpe.com
Third Party Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory

Timeline

No history available yet.