CVE-2014-7299Arubaos vulnerability

4 documents4 sources
Severity
7.5HIGHNVD
EPSS
0.2%
top 59.76%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Arubanetworks Arubaos
Timeline
PublishedOct 8
Latest updateMay 17

Description

Unspecified vulnerability in administrative interfaces in ArubaOS 6.3.1.11, 6.3.1.11-FIPS, 6.4.2.1, and 6.4.2.1-FIPS on Aruba controllers allows remote attackers to bypass authentication, and obtain potentially sensitive information or add guest accounts, via an SSH session.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

NVDarubanetworks/arubaos6.3.11, 6.4.2.1+1

🔴Vulnerability Details

2
GHSA
GHSA-rvmm-fjx9-w3hj: Unspecified vulnerability in administrative interfaces in ArubaOS 62022-05-17
CVEList
CVE-2014-7299: Unspecified vulnerability in administrative interfaces in ArubaOS 62014-10-08

💬Community

1
Bugzilla
CVE-2013-7299 tntnet: information leak via crafted HTTP request2014-01-20
CVE-2014-7299 — Arubanetworks Arubaos vulnerability | cvebase