CVE-2023-45617

EPSS 0.53%
Veröffentlicht 14.11.2023 23:15:09
Zuletzt bearbeitet 21.11.2024 08:27:04
Quelle security-alert@hpe.com
Teams Watchlist Login
Unerledigt Login

There are arbitrary file deletion vulnerabilities in the CLI service accessed by PAPI (Aruba's access point management protocol). Successful exploitation of these vulnerabilities result in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to interrupt normal operation and impact the integrity of the access point.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 0 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Arubanetworks ≫ Arubaos Version >= 10.3.0.0 < 10.4.0.3

Arubanetworks ≫ Arubaos Version10.5.0.0

Hp ≫ Instantos Version >= 6.4.0.0 < 8.6.0.23

Hp ≫ Instantos Version >= 8.10.0.0 < 8.10.0.9

Hp ≫ Instantos Version >= 8.11.0.0 < 8.11.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.53%	0.662

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	8.2	3.9	4.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
security-alert@hpe.com	8.2	3.9	4.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-017.txt

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2023-45617

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-45617

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-45617

EUVD