VYPR
Unrated severityNVD Advisory· Published Mar 5, 2024· Updated Nov 7, 2024

CVE-2024-25616

CVE-2024-25616

Description

Aruba has identified certain configurations of ArubaOS that can lead to partial disclosure of sensitive information in the IKE_AUTH negotiation process. The scenarios in which disclosure of potentially sensitive information can occur are complex, and depend on factors beyond the control of attackers.

Affected products

2
  • Hewlett Packard Enterprise (HPE)/ArubaOS Wi-Fi Controllers and Campus/Remote Access Pointsv5
    Range: ArubaOS 10.5.x.x: 10.5.0.1 and below

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.