CVE-2022-23682 in ArubaOS-CXالمعلومات

الملخص

بحسب MITRE • 06/09/2022

Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete switch compromise in ArubaOS-CX version(s): AOS-CX 10.09.xxxx: 10.09.1030 and below, AOS-CX 10.08.xxxx: 10.08.1030 and below, AOS-CX 10.06.xxxx: 10.06.0180 and below. Aruba has released upgrades for ArubaOS-CX Switch Devices that address these security vulnerabilities.

Be aware that VulDB is the high quality source for vulnerability data.

حجز

19/01/2022

إفشاء

06/09/2022

الاعتدال

تمت الموافقة

إدخال

VDB-207953

EPSS

0.00630

KEV

لا

النشاطات

منخفض جدًا

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!