CVE-2015-1388OS Command Injection in Arubaos

CWE-78OS Command Injection4 documents4 sources
Severity
7.2HIGHNVD
EPSS
0.6%
top 29.74%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Arubanetworks Arubaos
Timeline
PublishedMar 24
Latest updateMay 17

Description

The "RAP console" feature in ArubaOS 5.x through 6.2.x, 6.3.x before 6.3.1.15, and 6.4.x before 6.4.2.4 on Aruba access points in Remote Access Point (AP) mode allows remote attackers to execute arbitrary commands via unspecified vectors.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

NVDarubanetworks/arubaos6.2.3.9+37

🔴Vulnerability Details

2
GHSA
GHSA-hfxr-3rpj-gp54: The "RAP console" feature in ArubaOS 52022-05-17
CVEList
CVE-2015-1388: The "RAP console" feature in ArubaOS 52015-03-24

💬Community

1
Bugzilla
CVE-2014-1388 webkitgtk: arbitrary code execution and denial of service2015-01-12
CVE-2015-1388 — OS Command Injection in Arubaos | cvebase