CVE-2022-23690

EPSS 0.39%
Veröffentlicht 06.09.2022 18:15:11
Zuletzt bearbeitet 21.11.2024 06:49:06
Quelle security-alert@hpe.com
Teams Watchlist Login
Unerledigt Login

A vulnerability in the web-based management interface of AOS-CX could allow a remote unauthenticated attacker to fingerprint the exact version AOS-CX running on the switch. This allows an attacker to retrieve information which could be used to more precisely target the switch for further exploitation in ArubaOS-CX Switches version(s): AOS-CX 10.10.xxxx: 10.10.0002 and below, AOS-CX 10.09.xxxx: 10.09.1020 and below, AOS-CX 10.08.xxxx: 10.08.1060 and below, AOS-CX 10.06.xxxx: 10.06.0200 and below. Aruba has released upgrades for ArubaOS-CX Switch Devices that address this security vulnerability.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 10000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 10000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 10000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 10000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 8325 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 8325 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 8325 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 8325 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 8320 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 8320 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 8320 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 8320 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 9300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 9300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 9300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 9300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 8360 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 8360 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 8360 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 8360 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 6400 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 6400 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 6400 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 6400 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 6300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 6300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 6300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 6300 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 6200f Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 6200f Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 6200f Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 6200f Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 6100 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 6100 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 6100 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 6100 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 6000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 6000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 6000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 6000 Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 4100i Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 4100i Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 4100i Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 4100i Version-

Arubanetworks ≫ Aos-cx Version >= 10.06.0000 < 10.06.0200

Arubanetworks ≫ Cx 8400 Version-

Arubanetworks ≫ Aos-cx Version >= 10.08.0000 < 10.08.1060

Arubanetworks ≫ Cx 8400 Version-

Arubanetworks ≫ Aos-cx Version >= 10.09.0000 < 10.09.1020

Arubanetworks ≫ Cx 8400 Version-

Arubanetworks ≫ Aos-cx Version >= 10.10.0000 < 10.10.0002

Arubanetworks ≫ Cx 8400 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.39%	0.591

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-012.txt

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-23690

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-23690

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-23690

EUVD