Arubaos Switch
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2024-26303 | Med | 0.32 | 4.9 | 0.01 | Mar 26, 2024 | Authenticated Denial of Service Vulnerability in ArubaOS-Switch SSH Daemon | ||
| CVE-2023-39268 | 0.00 | — | 0.01 | Aug 29, 2023 | A memory corruption vulnerability in ArubaOS-Switch could lead to unauthenticated remote code execution by receiving specially crafted packets. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying… | |||
| CVE-2023-39267 | 0.00 | — | 0.01 | Aug 29, 2023 | An authenticated remote code execution vulnerability exists in the command line interface in ArubaOS-Switch. Successful exploitation results in a Denial-of-Service (DoS) condition in the switch. | |||
| CVE-2023-39266 | 0.00 | — | 0.00 | Aug 29, 2023 | A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could… | |||
| CVE-2022-23677 | 0.00 | — | 0.19 | May 10, 2022 | A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions;… | |||
| CVE-2022-23676 | 0.00 | — | 0.21 | May 10, 2022 | A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions;… |
- risk 0.32cvss 4.9epss 0.01
Authenticated Denial of Service Vulnerability in ArubaOS-Switch SSH Daemon
- CVE-2023-39268Aug 29, 2023risk 0.00cvss —epss 0.01
A memory corruption vulnerability in ArubaOS-Switch could lead to unauthenticated remote code execution by receiving specially crafted packets. Successful exploitation of this vulnerability results in the ability to execute arbitrary code as a privileged user on the underlying…
- CVE-2023-39267Aug 29, 2023risk 0.00cvss —epss 0.01
An authenticated remote code execution vulnerability exists in the command line interface in ArubaOS-Switch. Successful exploitation results in a Denial-of-Service (DoS) condition in the switch.
- CVE-2023-39266Aug 29, 2023risk 0.00cvss —epss 0.00
A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could…
- CVE-2022-23677May 10, 2022risk 0.00cvss —epss 0.19
A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions;…
- CVE-2022-23676May 10, 2022risk 0.00cvss —epss 0.21
A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions;…