漏洞标题
无身份缓冲区溢出漏洞在PAPI协议访问的服务中
漏洞描述信息
通过PAPI协议访问的服务中存在未验证的缓冲区溢出漏洞
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
未进行输入大小检查的缓冲区拷贝(传统缓冲区溢出)
漏洞标题
Unauthenticated Buffer Overflow Vulnerabilities in Services Accessed by the PAPI Protocol
漏洞描述信息
There are buffer overflow vulnerabilities in multiple underlying services that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying operating system.
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
漏洞类别
N/A
漏洞标题
Aruba Networks ArubaOS和InstantOS 安全漏洞
漏洞描述信息
Aruba Networks ArubaOS和Aruba Networks InstantOS都是美国安移通(Aruba Networks)公司的产品。Aruba Networks ArubaOS是一套面向Aruba Mobility-Defined Networks(包括移动控制器和移动接入交换机)的操作系统。Aruba Networks InstantOS是一个基于 Arch Linux 的发行版。 Aruba Networks ArubaOS和InstantOS存在安全漏洞,该漏洞源于多个底层服务中
CVSS信息
N/A
漏洞类别
其他