CVE-2023-45617

EPSS 0.53%
Published 14.11.2023 23:15:09
Last modified 21.11.2024 08:27:04
Source security-alert@hpe.com
Teams watchlist Login
Open Login

There are arbitrary file deletion vulnerabilities in the CLI service accessed by PAPI (Aruba's access point management protocol). Successful exploitation of these vulnerabilities result in the ability to delete arbitrary files on the underlying operating system, which could lead to the ability to interrupt normal operation and impact the integrity of the access point.

Affected products Warnungen 0 Metrics 3 CWE 0 References 4

Data is provided by the National Vulnerability Database (NVD)

Arubanetworks ≫ Arubaos Version >= 10.3.0.0 < 10.4.0.3

Arubanetworks ≫ Arubaos Version10.5.0.0

Hp ≫ Instantos Version >= 6.4.0.0 < 8.6.0.23

Hp ≫ Instantos Version >= 8.10.0.0 < 8.10.0.9

Hp ≫ Instantos Version >= 8.11.0.0 < 8.11.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.53%	0.662

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.2	3.9	4.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
security-alert@hpe.com	8.2	3.9	4.2	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-017.txt

Vendor Advisory

Mitigation

https://nvd.nist.gov/vuln/detail/CVE-2023-45617

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2023-45617

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2023-45617

EUVD