7.5

CVE-2007-0932

EPSS 4.55%
Veröffentlicht 14.02.2007 11:28:00
Zuletzt bearbeitet 09.04.2025 00:30:58
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The (1) Aruba Mobility Controllers 200, 600, 2400, and 6000 and (2) Alcatel-Lucent OmniAccess Wireless 43xx and 6000 do not properly implement authentication and privilege assignment for the guest account, which allows remote attackers to access administrative interfaces or the WLAN.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 11

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Alcatel-lucent ≫ Omniaccess Wireless Version43xx

Alcatel-lucent ≫ Omniaccess Wireless Version6000

Aruba ≫ Mobility Controller Version200

Aruba ≫ Mobility Controller Version800

Aruba ≫ Mobility Controller Version2400

Aruba ≫ Mobility Controller Version6000

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	4.55%	0.888

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://secunia.com/advisories/24144

Vendor Advisory

http://www.securityfocus.com/bid/22538

http://lists.grok.org.uk/pipermail/full-disclosure/2007-February/052382.html

Vendor Advisory

http://osvdb.org/33185

http://securityreason.com/securityalert/2243

http://www.kb.cert.org/vuls/id/613833

Third Party Advisory

US Government Resource

http://www.securityfocus.com/archive/1/459927/100/0/threaded

https://exchange.xforce.ibmcloud.com/vulnerabilities/32461

https://nvd.nist.gov/vuln/detail/CVE-2007-0932

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2007-0932

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2007-0932

EUVD