VYPR
← All advisories
Unrated severityNVD Advisory· Published Aug 15, 2023· Updated Oct 3, 2024

Arbitrary File Overwrite in HPE Aruba Networking Virtual Intranet Access (VIA) Microsoft Windows Client

CVE-2023-38402

Description

A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow malicious users to overwrite arbitrary files as NT AUTHORITY\SYSTEM. A successful exploit could allow these malicious users to create a Denial-of-Service (DoS) condition affecting the Microsoft Windows operating System boot process.

Affected products

2
  • HPE/Virtual Intranet Access (VIA) clientllm-fuzzy
  • Hewlett Packard Enterprise (HPE)/HPE Aruba Networking Virtual Intranet Access (VIA)v5
    Range: HPE Aruba Networking Virtual Intranet Access (VIA) client for Microsoft Windows

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.