Unrated severityNVD Advisory· Published Aug 1, 2023· Updated Oct 22, 2024
Authenticated Command Injection Vulnerability in AOS-CX Command Line Interface
CVE-2023-3718
Description
An authenticated command injection vulnerability exists in the AOS-CX command line interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands on the underlying operating system as a privileged user on the affected switch. This allows an attacker to fully compromise the underlying operating system on the device running AOS-CX.
Affected products
2- Hewlett Packard Enterprise (HPE)/Aruba CX Switchesv5Range: AOS-CX 10.11.xxxx: 10.11.1010 and below
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.