Aruba Vulnerabilidad

Cronología

Escribe

Not Defined	283
Policy Management Software	124
Network Management Software	31
WordPress Plugin	1

Producto

Aruba ClearPass Policy Manager	110
Aruba ArubaOS	84
Aruba AirWave Management Platform	28
Aruba InstantOS	28
Aruba Networks ArubaOS	21

Contramedidas

Official Fix	324
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	115

Explotabilidad

High	2
Functional	0
Proof-of-Concept	6
Unproven	3
Not Defined	428

Vector de acceso

Not Defined	0
Physical	0
Local	18
Adjacent	24
Network	397

Autenticación

Not Defined	0
High	98
Low	221
None	120

La interacción del usuario

Not Defined	0
Required	60
None	379

C3BM Index

CVSSv3 Base

≤1	0
≤2	0
≤3	1
≤4	19
≤5	43
≤6	67
≤7	129
≤8	114
≤9	34
≤10	32

CVSSv3 Temp

≤1	0
≤2	0
≤3	2
≤4	20
≤5	50
≤6	124
≤7	103
≤8	77
≤9	31
≤10	32

VulDB

≤1	0
≤2	0
≤3	16
≤4	30
≤5	79
≤6	35
≤7	124
≤8	85
≤9	37
≤10	33

NVD

≤1	0
≤2	0
≤3	1
≤4	0
≤5	14
≤6	13
≤7	47
≤8	54
≤9	54
≤10	31

CNA

≤1	0
≤2	0
≤3	0
≤4	1
≤5	14
≤6	12
≤7	29
≤8	68
≤9	20
≤10	19

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	36
<2k	60
<5k	136
<10k	82
<25k	117
<50k	7
<100k	1
≥100k	0

Explotar hoy

<1k	220
<2k	59
<5k	58
<10k	67
<25k	35
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

🔴 CTI Ocupaciones

Affected Products (59): 6300 (3), 6300 Switch Series (4), 6400 (3), 6400 Switch Series (4), 7000 Series Mobility Controller (3), 7200 Series Mobility Controller (3), 8320 (3), 8320 Switch Series (4), 8325 (3), 8325 Switch Series (4), 8400 (3), 8400 Switch Series (4), 9000 (3), 9000 Gateway (3), 9200 (3), AOS-CX (3), Access Point (1), AirWave (16), AirWave Glass (1), AirWave Management Platform (28), Airwave Glass (3), Airwave VisualRF (1), Aruba Mobility Controller (4), ArubaOS (105), ArubaOS-CX (4), ArubaOS-CX Switches (7), CX 6200F (3), CX 6200F Switch Series (4), CX 8360 (3), CX 8360 Switch Series (4), CX Switch (2), ClearConnect Enterprise Orchestration (1), ClearPass (13), ClearPass C1000 S-1200 R4 (1), ClearPass OnGuard Agent (2), ClearPass OnGuard Linux Agent (1), ClearPass Policy Manager (124), EdgeConnect Enterprise (23), EdgeConnect Enterprise Orchestration (10), EdgeConnect Enterprise Orchestration Software (1), EdgeConnect Enterprise Orchestrator (3), EdgeConnect SD-WAN Orchestrator (20), HP2910al-48G (1), HiSpeed Cache Plugin (1), Instant (6), Instant Access Point (21), InstantOS (28), Instant On 1930 Switch (2), Intelligent Edge Switch (3), Mc-800 (1), Mobility Controller (3), Mobility Controllers (1), Networking Virtual Intranet Access Client (1), OS (2), Operating System Software (3), SD-WAN Software and Gateways (11), Switch (3), Virtual Intranet Access Client (2), Web Management Portal (1)

Fecha de publicación	Base	Temp	Vulnerabilidad	Prod	Exp	Con	EPSS	CTI	CVE
2023-12-19	6.0	6.0	Aruba HiSpeed Cache Plugin divulgación de información	WordPress Plugin	Not Defined	Not Defined	0.00087	0.00	CVE-2023-44983
2023-10-25	5.4	5.4	Aruba ClearPass Policy Manager Web-based Management Interface escalada de privilegios	Policy Management Software	Not Defined	Official Fix	0.00046	0.00	CVE-2023-43508
2023-10-25	5.5	5.4	Aruba ClearPass Policy Manager Web-based Management Interface vulnerabilidad desconocida	Policy Management Software	Not Defined	Official Fix	0.00061	0.03	CVE-2023-43509
2023-10-25	7.4	7.3	Aruba ClearPass Policy Manager Web-based Management Interface sql injection	Policy Management Software	Not Defined	Official Fix	0.00056	0.00	CVE-2023-43507
2023-10-25	6.6	6.5	Aruba ClearPass OnGuard Linux Agent Privilege Escalation	Desconocido	Not Defined	Official Fix	0.00042	0.02	CVE-2023-43506
2023-10-25	5.8	5.7	Aruba ClearPass Policy Manager Web-based Management Interface escalada de privilegios	Policy Management Software	Not Defined	Official Fix	0.00056	0.00	CVE-2023-43510
2023-10-18	5.3	5.3	Aruba AirWave Management Platform Web-based Management Interface divulgación de información	Desconocido	Not Defined	Official Fix	0.00049	0.00	CVE-2023-4896
2023-09-07	7.2	7.1	Aruba 9000/9200 BIOS desbordamiento de búfer	Desconocido	Not Defined	Official Fix	0.00042	0.00	CVE-2023-38485
2023-09-07	6.9	6.8	Aruba 9000/9200 Secure Boot autenticación débil	Desconocido	Not Defined	Official Fix	0.00043	0.00	CVE-2023-38486
2023-09-07	7.0	6.9	Aruba 9000/9200 BIOS divulgación de información	Desconocido	Not Defined	Official Fix	0.00042	0.02	CVE-2023-38484
2023-09-06	6.5	6.4	Aruba AirWave cross site request forgery	Desconocido	Not Defined	Official Fix	0.00058	0.00	CVE-2015-1391
2023-09-06	4.8	4.7	Aruba AirWave cross site scripting	Desconocido	Not Defined	Official Fix	0.00045	0.03	CVE-2015-1390
2023-09-06	7.0	6.8	Aruba AirWave escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00048	0.00	CVE-2015-2202
2023-09-06	5.9	5.8	Aruba AirWave VisualRF escalada de privilegios	Desconocido	Not Defined	Official Fix	0.00051	0.00	CVE-2015-2201
2023-08-30	6.2	6.2	Aruba Switch Web Management Interface cross site scripting	Desconocido	Not Defined	Official Fix	0.00063	0.02	CVE-2023-39266
2023-08-30	5.7	5.7	Aruba Switch Command Line Interface denegación de servicio	Desconocido	Not Defined	Official Fix	0.00067	0.00	CVE-2023-39267
2023-08-30	6.4	6.3	Aruba Switch Packet desbordamiento de búfer	Desconocido	Not Defined	Official Fix	0.00220	0.03	CVE-2023-39268
2023-08-23	6.1	6.1	Aruba EdgeConnect SD-WAN Orchestrator Web-based Management Interface cross site scripting	Network Management Software	Not Defined	Official Fix	0.00063	0.02	CVE-2023-37425
2023-08-23	5.3	5.3	Aruba EdgeConnect SD-WAN Orchestrator Web-based Management Interface cross site scripting	Network Management Software	Not Defined	Official Fix	0.00048	0.00	CVE-2023-37423
2023-08-23	5.3	5.3	Aruba EdgeConnect SD-WAN Orchestrator Web-based Management Interface cross site scripting	Network Management Software	Not Defined	Official Fix	0.00048	0.00	CVE-2023-37422
2023-08-23	5.3	5.3	Aruba EdgeConnect SD-WAN Orchestrator Web-based Management Interface cross site scripting	Network Management Software	Not Defined	Official Fix	0.00048	0.00	CVE-2023-37421
2023-08-23	5.1	5.0	Aruba EdgeConnect SD-WAN Orchestrator Web-based Management Interface escalada de privilegios	Network Management Software	Not Defined	Official Fix	0.00073	0.00	CVE-2023-37440
2023-08-23	6.8	6.8	Aruba EdgeConnect SD-WAN Orchestrator SSH Host Key cifrado débil	Network Management Software	Not Defined	Official Fix	0.00048	0.02	CVE-2023-37426
2023-08-23	5.8	5.7	Aruba EdgeConnect SD-WAN Orchestrator Web-based Management Interface sql injection	Network Management Software	Not Defined	Official Fix	0.00052	0.00	CVE-2023-37439
2023-08-23	5.6	5.5	Aruba EdgeConnect SD-WAN Orchestrator Web-based Management Interface sql injection	Network Management Software	Not Defined	Official Fix	0.00050	0.00	CVE-2023-37438

414 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 414 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!