CVE-2016-2032

CWE-287Improper Authentication3 documents3 sources
Severity
7.5HIGH
EPSS
0.9%
top 24.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Arubanetworks AirwaveArubanetworks Aruba Instant
Timeline
PublishedJan 31
Latest updateMay 24

Description

A vulnerability exists in the Aruba AirWave Management Platform 8.x prior to 8.2 in the management interface of an underlying system component called RabbitMQ, which could let a malicious user obtain sensitive information. This interface listens on TCP port 15672 and 55672

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

NVDarubanetworks/airwave< 8.2.0.0

🔴Vulnerability Details

2
GHSA
GHSA-8fw3-pgpp-w37p: A vulnerability exists in the Aruba AirWave Management Platform 82022-05-24
CVEList
CVE-2016-2032: A vulnerability exists in the Aruba AirWave Management Platform 82020-01-31
CVE-2016-2032 (HIGH CVSS 7.5) | A vulnerability exists in the Aruba | cvebase.io