CVE-2022-37910Classic Buffer Overflow in Arubaos

CWE-120Classic Buffer Overflow3 documents3 sources
Severity
6.5MEDIUMNVD
CNA4.4
EPSS
0.3%
top 49.33%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Arubanetworks ArubaosArubanetworks Sd-wan
Timeline
PublishedDec 12

Description

A buffer overflow vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability results in a denial of service on the affected system.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages2 packages

NVDarubanetworks/arubaos6.5.4.06.5.4.22+3
NVDarubanetworks/sd-wan8.7.0.0-2.3.0.08.7.0.0-2.3.0.6

🔴Vulnerability Details

2
GHSA
GHSA-47xf-g9q2-hc3g: A buffer overflow vulnerability exists in the ArubaOS command line interface2022-12-12
CVEList
CVE-2022-37910: A buffer overflow vulnerability exists in the ArubaOS command line interface2022-11-03
CVE-2022-37910 — Classic Buffer Overflow in Arubaos | cvebase