CVE-2023-35975Path Traversal in Arubaos

CWE-22Path Traversal3 documents3 sources
Severity
8.1HIGHNVD
CNA6.5
EPSS
0.2%
top 62.42%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Arubanetworks Arubaos
Timeline
PublishedJul 5

Description

An authenticated path traversal vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability results in the ability to delete arbitrary files in the underlying operating system.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:HExploitability: 2.8 | Impact: 5.2

Affected Packages1 packages

NVDarubanetworks/arubaos6.5.4.08.6.0.21+3

🔴Vulnerability Details

2
GHSA
GHSA-g45c-4xf2-8f43: An authenticated path traversal vulnerability exists in the ArubaOS command line interface2023-07-05
CVEList
Authenticated Path Traversal in ArubaOS Command Line Interface Allows for Arbitrary File Deletion2023-07-05
CVE-2023-35975 — Path Traversal in Arubaos | cvebase