CVE-2021-25143

Published: Mar 29, 2021Modified: Nov 21, 2024

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

A remote denial of service (dos) vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 8.3.x: 8.3.0.12 and below; Aruba Instant 8.5.x: 8.5.0.9 and below; Aruba Instant 8.6.x: 8.6.0.4 and below. Aruba has released patches for Aruba Instant that address this security vulnerability.

Affected (4)

Products: Arubanetworks: Instant · Siemens: Scalance W1750d Firmware

1 product

1 product

Scalance W1750d Firmware

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Arubanetworks Instant	From 8.3.0.0 to 8.3.0.13
Arubanetworks Instant	From 8.5.0.0 to 8.5.0.10
Arubanetworks Instant	From 8.6.0.0 to 8.6.0.5

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Siemens Scalance W1750d Firmware	Before 8.7.0

Running on/with	Platform Versions
Siemens Scalance W1750d	All versions

References (4)

https://cert-portal.siemens.com/productcert/pdf/ssa-723417.pdf

Source: security-alert@hpe.com

PatchThird Party Advisory

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-007.txt

Source: security-alert@hpe.com

Vendor Advisory

https://cert-portal.siemens.com/productcert/pdf/ssa-723417.pdf

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party Advisory

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-007.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.