漏洞标题
N/A
漏洞描述信息
AOS-CX命令行界面存在多个漏洞,可能导致授权命令注入。成功的漏洞利用可能导致攻击者以root权限在底层操作系统上执行任意命令,从而导致ArubaOS-CX版本(s):AOS-CX 10.09.xxxx:10.09.1030及以下,AOS-CX 10.08.xxxx:10.08.1030及以下,AOS-CX 10.06.xxxx:10.06.0180及以下 complete switch compromise。Aruba已为ArubaOS-CX交换机设备发布了升级,解决了这些安全漏洞。
CVSS信息
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete switch compromise in ArubaOS-CX version(s): AOS-CX 10.09.xxxx: 10.09.1030 and below, AOS-CX 10.08.xxxx: 10.08.1030 and below, AOS-CX 10.06.xxxx: 10.06.0180 and below. Aruba has released upgrades for ArubaOS-CX Switch Devices that address these security vulnerabilities.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Aruba AOS-CX 操作系统命令注入漏洞
漏洞描述信息
Aruba AOS-CX是美国安移通(Aruba)公司的一个现代可编程网络。 Aruba AOS-CX存在安全漏洞,目前尚无此漏洞的相关信息,请随时关注CNNVD或厂商公告。
CVSS信息
N/A
漏洞类别
授权问题