High severity7.5NVD Advisory· Published Aug 6, 2018· Updated Jun 17, 2026
CVE-2017-9003
CVE-2017-9003
Description
Multiple memory corruption flaws are present in ArubaOS which could allow an unauthenticated user to crash ArubaOS processes. With sufficient time and effort, it is possible these vulnerabilities could lead to the ability to execute arbitrary code - remote code execution has not yet been confirmed.
Affected products
1- Range: all versions prior to 6.3.1.25 -- 6.4 prior to 6.4.4.16 -- 6.5.x prior to 6.5.1.9 -- 6.5.2 -- 6.5.3 prior to 6.5.3.3 -- 6.5.4 prior to 6.5.4.2 -- 8.x prior to 8.1.0.4 FIPS and non-FIPS versions of software are both affected equally.
Patches
Vulnerability mechanics
References
2- www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-006.txtnvdVendor Advisory
- www.securitytracker.com/id/1039580nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.