Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-39267


An authenticated remote code execution vulnerability exists in the command line interface in ArubaOS-Switch. Successful exploitation results in a Denial-of-Service (DoS) condition in the switch.


Published

2023-08-29T20:15:09.743

Last Modified

2024-11-21T08:15:01.180

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.6 (MEDIUM)

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System hpe arubaos-switch < a.15.16.0026 Yes
Operating System hpe arubaos-switch < 16.04.0027 Yes
Operating System hpe arubaos-switch < 16.08.0027 Yes
Operating System hpe arubaos-switch < 16.10.0024 Yes
Operating System hpe arubaos-switch < 16.11.0013 Yes
Hardware arubanetworks aruba_2530 - No
Hardware arubanetworks aruba_2530ya - No
Hardware arubanetworks aruba_2530yb - No
Hardware arubanetworks aruba_2540 - No
Hardware arubanetworks aruba_2920 - No
Hardware arubanetworks aruba_2930f - No
Hardware arubanetworks aruba_2930m - No
Hardware arubanetworks aruba_3810m - No
Hardware arubanetworks aruba_5406r_zl2 - No
Hardware arubanetworks aruba_5412r_zl2 - No

References