Unrated severityNVD Advisory· Published Jul 5, 2023· Updated Dec 4, 2024
Authenticated Path Traversal in ArubaOS Command Line Interface Allows for Arbitrary File Deletion
CVE-2023-35975
Description
An authenticated path traversal vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability results in the ability to delete arbitrary files in the underlying operating system.
Affected products
2- Hewlett Packard Enterprise (HPE)/Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Centralv5Range: - ArubaOS 10.4.x.x: 10.4.0.1 and below
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.