VYPR
Unrated severityNVD Advisory· Published Sep 13, 2019· Updated Aug 4, 2024

CVE-2019-5315

CVE-2019-5315

Description

A command injection vulnerability is present in the web management interface of ArubaOS that permits an authenticated user to execute arbitrary commands on the underlying operating system. A malicious administrator could use this ability to install backdoors or change system configuration in a way that would not be logged. This vulnerability only affects ArubaOS 8.x.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.