6.8
CVE-2022-23691
- EPSS 0.13%
- Published 06.09.2022 18:15:11
- Last modified 21.11.2024 06:49:06
- Source security-alert@hpe.com
- Teams watchlist Login
- Open Login
A vulnerability exists in certain AOS-CX switch models which could allow an attacker with access to the recovery console to bypass normal authentication. A successful exploit allows an attacker to bypass system authentication and achieve total switch compromise in ArubaOS-CX Switches version(s): AOS-CX 10.10.xxxx: 10.10.0002 and below, AOS-CX 10.09.xxxx: 10.09.1030 and below, AOS-CX 10.08.xxxx: 10.08.1070 and below, AOS-CX 10.06.xxxx: 10.06.0210 and below. Aruba has released upgrades for ArubaOS-CX Switch Devices that address this security vulnerability.
Data is provided by the National Vulnerability Database (NVD)
Arubanetworks ≫ Aos-cx Version >= 10.06.0000 <= 10.06.0210
Arubanetworks ≫ Aos-cx Version >= 10.08.0000 <= 10.08.1070
Arubanetworks ≫ Aos-cx Version >= 10.09.0000 <= 10.09.1030
Arubanetworks ≫ Aos-cx Version >= 10.10.0000 <= 10.10.0002
Arubanetworks ≫ Aos-cx Version >= 10.06.0000 <= 10.06.0210
Arubanetworks ≫ Aos-cx Version >= 10.08.0000 <= 10.08.1070
Arubanetworks ≫ Aos-cx Version >= 10.09.0000 <= 10.09.1030
Arubanetworks ≫ Aos-cx Version >= 10.10.0000 <= 10.10.0002
Arubanetworks ≫ Aos-cx Version >= 10.06.0000 <= 10.06.0210
Arubanetworks ≫ Aos-cx Version >= 10.08.0000 <= 10.08.1070
Arubanetworks ≫ Aos-cx Version >= 10.09.0000 <= 10.09.1030
Arubanetworks ≫ Aos-cx Version >= 10.10.0000 <= 10.10.0002
Arubanetworks ≫ Aos-cx Version >= 10.06.0000 <= 10.06.0210
Arubanetworks ≫ Aos-cx Version >= 10.08.0000 <= 10.08.1070
Arubanetworks ≫ Aos-cx Version >= 10.09.0000 <= 10.09.1030
Arubanetworks ≫ Aos-cx Version >= 10.10.0000 <= 10.10.0002
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.13% | 0.336 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 0.9 | 5.9 |
CVSS:3.1/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|