An authenticated remote code execution vulnerability exists in the command line interface in ArubaOS-Switch. Successful exploitation results in a Denial-of-Service (DoS) condition in the switch.
References
| Link | Resource |
|---|---|
| https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
History
11 Sep 2023, 13:52
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_2530:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_2540:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_2930m:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_2530yb:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_5412r_zl2:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_2530ya:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_2930f:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_3810m:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_2920:-:*:*:*:*:*:*:* cpe:2.3:h:arubanetworks:aruba_5406r_zl2:-:*:*:*:*:*:*:* |
|
| First Time |
Arubanetworks aruba 5406r Zl2
Hpe Arubanetworks aruba 2540 Arubanetworks Arubanetworks aruba 5412r Zl2 Arubanetworks aruba 2930f Arubanetworks aruba 2530yb Arubanetworks aruba 3810m Arubanetworks aruba 2930m Arubanetworks aruba 2920 Hpe arubaos-switch Arubanetworks aruba 2530ya Arubanetworks aruba 2530 |
|
| CWE | NVD-CWE-noinfo | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 6.5 |
| References | (MISC) https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt - Vendor Advisory |
29 Aug 2023, 20:41
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-08-29 20:15
Updated : 2024-02-28 20:33
NVD link : CVE-2023-39267
Mitre link : CVE-2023-39267
CVE.ORG link : CVE-2023-39267
JSON object : View
Products Affected
arubanetworks
- aruba_2920
- aruba_5406r_zl2
- aruba_2930m
- aruba_5412r_zl2
- aruba_2530yb
- aruba_2540
- aruba_2930f
- aruba_2530ya
- aruba_3810m
- aruba_2530
hpe
- arubaos-switch
CWE