CVE-2017-9000
published 2018-08-06CVE-2017-9000: ArubaOS, all versions prior to 6.3.1.25, 6.4 prior to 6.4.4.16, 6.5.x prior to 6.5.1.9, 6.5.2, 6.5.3 prior to 6.5.3.3, 6.5.4 prior to 6.5.4.2, 8.x prior to…
PriorityP264critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
EPSS
5.67%
92.0th percentile
ArubaOS, all versions prior to 6.3.1.25, 6.4 prior to 6.4.4.16, 6.5.x prior to 6.5.1.9, 6.5.2, 6.5.3 prior to 6.5.3.3, 6.5.4 prior to 6.5.4.2, 8.x prior to 8.1.0.4 FIPS and non-FIPS versions of software are both affected equally is vulnerable to unauthenticated arbitrary file access. An unauthenticated user with network access to an Aruba mobility controller on TCP port 8080 or 8081 may be able to access arbitrary files stored on the mobility controller. Ports 8080 and 8081 are used for captive portal functionality and are listening, by default, on all IP interfaces of the mobility controller, including captive portal interfaces. The attacker could access files which could contain passwords, keys, and other sensitive information that could lead to full system compromise.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| hewlett_packard_enterprise | arubaos | — | — |
| hp | arubaos | < 6.3.1.25 | 6.3.1.25 |
| hp | arubaos | — | — |
| hp | arubaos | >= 6.4 < 6.4.4.16 | 6.4.4.16 |
| hp | arubaos | >= 6.5.0 < 6.5.1.9 | 6.5.1.9 |
| hp | arubaos | >= 6.5.3 < 6.5.3.3 | 6.5.3.3 |
| hp | arubaos | >= 6.5.4 < 6.5.4.2 | 6.5.4.2 |
| hp | arubaos | >= 8.0 < 8.1.0.4 | 8.1.0.4 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_cisco5.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-rx65-35rg-w842: ArubaOS, all versions prior to 6
ghsa_unreviewed·2022-05-14
CVE-2017-9000 [CRITICAL] CWE-200 GHSA-rx65-35rg-w842: ArubaOS, all versions prior to 6
ArubaOS, all versions prior to 6.3.1.25, 6.4 prior to 6.4.4.16, 6.5.x prior to 6.5.1.9, 6.5.2, 6.5.3 prior to 6.5.3.3, 6.5.4 prior to 6.5.4.2, 8.x prior to 8.1.0.4 FIPS and non-FIPS versions of software are both affected equally is vulnerable to unauthenticated arbitrary file access. An unauthenticated user with network access to an Aruba mobility controller on TCP port 8080 or 8081 may be able to access arbitrary files stored on the mobility controller. Ports 8080 and 8081 are used for captive portal functionality and are listening, by default, on all IP interfaces of the mobility controller, including captive portal interfaces. The attacker could access files which could contain passwords, keys, and other sensitive information that could lead to full system compromise.
Kernel
Merge tag 'wireless-drivers-for-davem-2017-09-25' of git://git.kernel.org/pub/scm/linux/kernel/git/kvalo/wireless-drivers
kernel_security·2017-09-26·CVSS 8.8
CVE-2017-0786 [HIGH] Merge tag 'wireless-drivers-for-davem-2017-09-25' of git://git.kernel.org/pub/scm/linux/kernel/git/kvalo/wireless-drivers
Merge tag 'wireless-drivers-for-davem-2017-09-25' of git://git.kernel.org/pub/scm/linux/kernel/git/kvalo/wireless-drivers
Kalle Valo says:
wireless-drivers fixes for 4.14
Quite a lot of fixes this time. Most notable is the brcmfmac fix for a
CVE issue.
iwlwifi
* a couple of bugzilla bugs related to multicast handling
* two fixes for WoWLAN bugs that were causing queue hangs and
re-initialization problems
* two fixes for potential uninitialized variable use reported by Dan
Carpenter in relation to a recently introduced patch
* a fix for buffer reordering in the newly supported 9000 device
family
* fix a race when starting aggregation
* small fix for a recent patch to wake mac80211 queues
* send non-bufferable management frames in the generic queue so they
are not sent on queues t
Cisco
Cisco Nexus 9000 Series Switches Remote Login Denial of Service Vulnerability
vendor_cisco·2017-03-15·CVSS 5.3
CVE-2017-3879 [MEDIUM] CWE-119 Cisco Nexus 9000 Series Switches Remote Login Denial of Service Vulnerability
Cisco Nexus 9000 Series Switches Remote Login Denial of Service Vulnerability
A vulnerability in the remote login functionality for Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device. The attacker could use either a Telnet or an SSH client for the remote login attempt.
The vulnerability is due to improper handling of failed authentication during login. An attacker could exploit this vulnerability by attempting to log in remotely to the device. An exploit could allow the attacker to cause a login process to terminate unexpectedly.
There are no workarounds that address this vul
Cisco
Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability
vendor_cisco·2017-03-15·CVSS 5.3
CVE-2017-3878 [MEDIUM] CWE-119 Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability
Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability
A vulnerability in the Telnet remote login functionality of Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a Telnet process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device.
The vulnerability is due to incomplete input validation of Telnet packet headers. An attacker could exploit this vulnerability by sending a crafted Telnet packet to an affected system during a remote Telnet login attempt. A successful exploit could allow the attacker to cause the Telnet process on the affected system to restart unexpectedly, resulting in a denial of service (DoS) con
Cisco
Cisco Nexus 9000 Series Switches Remote Login Denial of Service Vulnerability
vendor_cisco·CVSS 3.0
CVE-2017-3879 Cisco Nexus 9000 Series Switches Remote Login Denial of Service Vulnerability
CVE-2017-3879: Cisco Nexus 9000 Series Switches Remote Login Denial of Service Vulnerability
A vulnerability in the remote login functionality for Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device. The attacker could use either a Telnet or an SSH client for the remote login attempt. The vulnerability is due to improper handling of failed authentication during login. An attacker could exploit this vulnerability by attempting to log in remotely to the device. An exploit could allow the attacker to cause a login process to terminate unexpectedly. There are no
CVSS: 3.0
CWE: CWE-11
Cisco
Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability
vendor_cisco·CVSS 3.0
CVE-2017-3878 Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability
CVE-2017-3878: Cisco Nexus 9000 Series Switches Telnet Login Denial of Service Vulnerability
A vulnerability in the Telnet remote login functionality of Cisco NX-OS Software running on Cisco Nexus 9000 Series Switches could allow an unauthenticated, remote attacker to cause a Telnet process used for login to terminate unexpectedly and the login attempt to fail. There is no impact to user traffic flowing through the device. The vulnerability is due to incomplete input validation of Telnet packet headers. An attacker could exploit this vulnerability by sending a crafted Telnet packet to an affected system during a remote Telnet login attempt. A successful exploit could allow the attacker to cause the Telnet process on the affected system to restart unexpectedly, resulting in a denial of serv
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2018-08-06
Published