CVE-2023-35977
6.5
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Exploitability: 2.8 / Impact: 3.6
Source: NVD
Description
Vulnerabilities exist which allow an authenticated attacker to access sensitive information on the ArubaOS command line interface. Successful exploitation could allow access to data beyond what is authorized by the users existing privilege level.
Affected (4)
Products: Arubanetworks: Arubaos
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From 10.4.0.0 to 10.4.0.2 |
| Running on/with | Platform Versions |
|---|---|
Arubanetworks Mc Va 10 | All versions |
Arubanetworks Mc Va 1k | All versions |
Arubanetworks Mc Va 250 | All versions |
Arubanetworks Mc Va 50 | All versions |
Arubanetworks Mcr Hw 10k | All versions |
Arubanetworks Mcr Hw 1k | All versions |
Arubanetworks Mcr Hw 5k | All versions |
Arubanetworks Mcr Va 10k | All versions |
Arubanetworks Mcr Va 1k | All versions |
Arubanetworks Mcr Va 50 | All versions |
Arubanetworks Mcr Va 500 | All versions |
Arubanetworks Mcr Va 5k | All versions |
Arubanetworks Sd Wan | All versions |
References (2)
Source: security-alert@hpe.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.