1. CVE-Search
  2. CVE-2020-7126
ID CVE-2020-7126
Summary A remote server-side request forgery (ssrf) vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.
References
Vulnerable Configurations
  • cpe:2.3:a:arubanetworks:airwave_glass:-:*:*:*:*:*:*:*
    cpe:2.3:a:arubanetworks:airwave_glass:-:*:*:*:*:*:*:*
  • cpe:2.3:a:arubanetworks:airwave_glass:1.2.1:*:*:*:*:*:*:*
    cpe:2.3:a:arubanetworks:airwave_glass:1.2.1:*:*:*:*:*:*:*
  • cpe:2.3:a:arubanetworks:airwave_glass:1.3.0:*:*:*:*:*:*:*
    cpe:2.3:a:arubanetworks:airwave_glass:1.3.0:*:*:*:*:*:*:*
  • cpe:2.3:a:arubanetworks:airwave_glass:1.3.1:*:*:*:*:*:*:*
    cpe:2.3:a:arubanetworks:airwave_glass:1.3.1:*:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 27-10-2020 - 20:24)
Impact:
Exploitability:
CWE CWE-918
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL NONE NONE
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:N/A:N
refmap via4
misc https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04051en_us
Last major update 27-10-2020 - 20:24
Published 26-10-2020 - 16:15
Last modified 27-10-2020 - 20:24
Back to Top