CVE-2021-37728Path Traversal in Arubaos

CWE-22Path Traversal3 documents3 sources
Severity
6.5MEDIUMNVD
EPSS
0.5%
top 32.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Arubanetworks ArubaosSiemens Scalance W1750d Firmware
Timeline
PublishedSep 7
Latest updateMay 24

Description

A remote path traversal vulnerability was discovered in Aruba Operating System Software version(s): Prior to 8.8.0.1, 8.7.1.4, 8.6.0.11, 8.5.0.13. Aruba has released patches for ArubaOS that address this security vulnerability.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:H/A:HExploitability: 1.2 | Impact: 5.2

Affected Packages2 packages

NVDarubanetworks/arubaos8.5.0.08.5.0.13+3

🔴Vulnerability Details

2
GHSA
GHSA-648m-c4m3-gp59: A remote path traversal vulnerability was discovered in Aruba Operating System Software version(s): Prior to 82022-05-24
CVEList
CVE-2021-37728: A remote path traversal vulnerability was discovered in Aruba Operating System Software version(s): Prior to 82021-09-07
CVE-2021-37728 — Path Traversal in Arubaos | cvebase