Aruba Product Multiple Vulnerabilities
Release Date:
5 Oct 2022
6027
Views
RISK: Medium Risk
TYPE: Security software and application - Security Software & Appliance
Multiple vulnerabilities were identified in Aruba Products. A remote attacker could exploit some of these vulnerabilities to trigger denial of service, remote code execution and cross site scripting.
Impact
- Cross-Site Scripting
- Denial of Service
- Remote Code Execution
System / Technologies affected
- Aruba InstantOS 6.4.x: 6.4.4.8-4.2.4.20 and below
- Aruba InstantOS 6.5.x: 6.5.4.23 and below
- Aruba InstantOS 8.6.x: 8.6.0.18 and below
- Aruba InstantOS 8.7.x: 8.7.1.9 and below
- Aruba InstantOS 8.10.x: 8.10.0.1 and below
- ArubaOS 10.3.x: 10.3.1.0 and below
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
Vulnerability Identifier
- CVE-2002-20001
- CVE-2022-37885
- CVE-2022-37886
- CVE-2022-37887
- CVE-2022-37888
- CVE-2022-37889
- CVE-2022-37890
- CVE-2022-37891
- CVE-2022-37892
- CVE-2022-37893
- CVE-2022-37894
- CVE-2022-37895
- CVE-2022-37896
Source
Related Link
Share with