cvelistv5 - CVE-2022-23677

CVE-2022-23677 (GCVE-0-2022-23677)

Vulnerability from cvelistv5

Published

2022-05-10 18:15

Modified

2024-08-03 03:51

Severity ?

CWE

remote execution of arbitrary code

Summary

A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities.

References

URL

Tags

	security-alert@hpe.com	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt	Vendor Advisory

Impacted products

	Vendor	Product	Version
	n/a	ArubaOS-Switch Devices	Version: ArubaOS-Switch 15.xx.xxxx: All versions Version: ArubaOS-Switch 16.01.xxxx: All versions Version: ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below Version: ArubaOS-Switch 16.03.xxxx: All versions Version: ArubaOS-Switch 16.04.xxxx: All versions Version: ArubaOS-Switch 16.05.xxxx: All versions Version: ArubaOS-Switch 16.06.xxxx: All versions Version: ArubaOS-Switch 16.07.xxxx: All versions Version: ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below Version: ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below Version: ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below Version: ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-03T03:51:44.688Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "ArubaOS-Switch Devices",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "ArubaOS-Switch 15.xx.xxxx: All versions"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.01.xxxx: All versions"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.03.xxxx: All versions"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.04.xxxx: All versions"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.05.xxxx: All versions"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.06.xxxx: All versions"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.07.xxxx: All versions"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below"
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below."
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "remote execution of arbitrary code",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2022-05-10T18:15:28",
        "orgId": "eb103674-0d28-4225-80f8-39fb86215de0",
        "shortName": "hpe"
      },
      "references": [
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "security-alert@hpe.com",
          "ID": "CVE-2022-23677",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "ArubaOS-Switch Devices",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "ArubaOS-Switch 15.xx.xxxx: All versions"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.01.xxxx: All versions"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.03.xxxx: All versions"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.04.xxxx: All versions"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.05.xxxx: All versions"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.06.xxxx: All versions"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.07.xxxx: All versions"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below"
                          },
                          {
                            "version_value": "ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below."
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "remote execution of arbitrary code"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt",
              "refsource": "MISC",
              "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0",
    "assignerShortName": "hpe",
    "cveId": "CVE-2022-23677",
    "datePublished": "2022-05-10T18:15:28",
    "dateReserved": "2022-01-19T00:00:00",
    "dateUpdated": "2024-08-03T03:51:44.688Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2022-23677\",\"sourceIdentifier\":\"security-alert@hpe.com\",\"published\":\"2022-05-10T19:15:09.220\",\"lastModified\":\"2024-11-21T06:49:04.657\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities.\"},{\"lang\":\"es\",\"value\":\"Se ha detectado Una vulnerabilidad de Ejecuci\u00f3n de C\u00f3digo Remota arbitrario en las versiones de ArubaOS-Switch Devices: ArubaOS-Switch 15.xx.xxxx: Todas las versiones; ArubaOS-Switch 16.01.xxxx: Todas las versiones; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 e inferiores; ArubaOS-Switch 16.03.xxxx: Todas las versiones; ArubaOS-Switch 16.04.xxxx: Todas las versiones; ArubaOS-Switch 16.05.xxxx: Todas las versiones; ArubaOS-Switch 16.06.xxxx: Todas las versiones; ArubaOS-Switch 16.07.xxxx: Todas las versiones; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 y anteriores; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 y anteriores; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 y anteriores; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 y anteriores. Aruba ha publicado actualizaciones para ArubaOS-Switch Devices que abordan estas vulnerabilidades de seguridad\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":8.1,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:C/I:C/A:C\",\"baseScore\":9.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":8.6,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-787\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"B93568F8-DC8C-4345-8DE1-1CD78A033B77\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"359AC555-5349-4F4F-A867-A3EE40E72779\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndExcluding\":\"16.04.0024\",\"matchCriteriaId\":\"147EE3CC-3147-46DC-A7F3-B86EFF7B9DD6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"254F604A-8BD7-4488-B7DD-40239D90000A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"C2043973-4752-4EE3-991F-2A22393D4BDE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"6D126AFA-087F-4255-8A4E-02ABFD42AAC6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"B33BEAC6-7BAD-4022-B127-2A2547F96901\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:5406r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"837AB9B6-EF2C-4EE9-8DBA-621183594F5A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"9AC628A5-CB98-4A4F-AE6B-12D977D69291\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"72C955FB-DA01-46C0-A503-B04DB9E7BAAD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"2E3D389B-025B-4D2F-AEE2-682A306D8590\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"BCF8476F-9CC3-4B4B-B617-12FDAACE1DFE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"CAF85FEE-21E3-42EC-9C3E-81E907AEBBC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"DE61EAD2-A7D5-4882-9154-B41946125D7D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"8F5BE378-7235-4248-965C-2496E548CA52\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2920:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"49A558E1-58CF-44DE-91D6-CCD2ABE05542\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"0C99814A-A444-4F3B-B617-8B49D2B347A1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"679DFE4F-BAE4-4034-A0AF-21DDB53849BB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"6CC5142C-3C94-4A13-9B6A-A3590AF1081C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"889575E9-4729-4E97-986A-2564C110A766\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndIncluding\":\"16.09.0020\",\"matchCriteriaId\":\"A2BF0015-99BD-4679-8F3E-8C80B7041822\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndIncluding\":\"16.10.0020\",\"matchCriteriaId\":\"5D8A7488-85E6-452D-8157-19591891D703\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndIncluding\":\"16.11.0004\",\"matchCriteriaId\":\"781BFC5E-08FF-4FA3-878F-76651AC67173\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2930f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B3A860A-5810-43C0-834A-3F701286B719\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"1D5EC3B3-208D-4C3D-9844-DEE60AA32BE0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"833907D5-5B5C-4D78-9AF1-ECE7B2D2ED15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"CAACB027-320E-461D-B35A-CBE90A019025\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"897D100F-C4C5-4C4D-AEC6-9E120594B1CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"6F0408D0-EC1B-471C-B593-A9CA28431B05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"607DF725-C73B-4EB0-9F79-8E246341C671\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"B5F5BFA6-E454-4DCB-B3EE-629A65824F33\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2930m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0859BFB-4CEE-414C-BBA5-AC8C47508DD7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"BF08F6C1-FBA9-4B16-86F9-3DBE85EE616F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"68B3E4D9-7FBF-44D3-B956-C469D3D8C8F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"AF19378D-47FE-4148-9A22-DB64000A56F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"289F77CA-B5DE-466F-806C-30E49194E8F4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"212CCB00-AFAE-493D-9BC5-4CDEFFB48BB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"7F4F1B66-FDD5-4B1D-A9CC-EF0BC60E7FFF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"675367A1-89BC-4898-A7D4-44388AE38857\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2530:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45857DA6-3886-4095-B89C-2D7EDBA73843\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"E40AC855-0986-478F-BC79-AB6A0861FBAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"9AA5D364-51FE-41E9-A17A-921CE145B9D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"F295F47D-5D8B-43C2-BACB-B169B5AC0575\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"3883E16E-61E5-4F38-9C1D-B9808611A27D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"4943EC34-3AB3-46B8-9C49-37535FC841FF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"4DD0B3EA-212C-4793-90AD-30262735EE89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"A0AE2173-FB26-4C2C-8C98-EDC7652B639F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2540:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DFFC632-14E9-49DC-AC70-915549150CAF\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"AFA6759C-F320-4527-AB92-DB32CCC99B06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"A0E53480-353B-492C-BBDE-2C0A7033C76A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"4EA4F624-7AC2-4A47-8B4C-CB2CC47D4DFA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"D60C474F-19FF-4CA9-88B5-D1598AF656E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"B6398019-D01F-4D8A-9099-1A943F118F05\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"DD272BB2-DEB3-4489-B5B2-924E4213EB60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"40061DCB-2FD8-48A7-B294-F257C330720C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:5412r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"689BE936-E585-4665-8B7E-C313AA2AB2AE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"942D15B1-81AD-47B3-9AB2-3191FC6EAF60\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"9A6946CD-771A-41B9-8CBB-E7ADB4E73F7E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"528AA06F-4380-449E-8745-49B5F8787EA4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"2ACB5412-1E27-4297-BCCE-FDC28E63022F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"A883186F-A5C2-4094-BBF3-83E21AE7ED10\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"517CB6EA-1277-4895-B7E3-A7C1E9A3195B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"07886BB9-68BC-4DBE-B997-7BE8504A34C7\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2615:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90DD7F7A-86B9-45FA-B672-4DEFABE45E85\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"9B9FF083-8CEF-42FF-9C86-7DE79DE142A3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"F663B858-2263-4151-84E2-2A126AF9B979\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"30814AB5-D25F-4787-8A88-C46BD06B8804\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"B52BE87A-4CCF-4373-9397-7E79F6BAF8E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"2ED2B48D-5E21-4FF5-9B3D-6D3A80EFC169\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"5E11B4E4-A024-4B98-BF75-50250374D08F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"77C9BB4A-C325-45E9-869C-B744DD91EF01\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2620:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CBBA246-5A52-4822-A9EB-BDC83B377EA3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"8049B6D7-CD62-467B-AA75-832FDC883D2B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"69302F97-5311-4847-9E2B-4D8CFC2A2496\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"DFCAE1F2-483A-480D-AD05-8C9E9DF2B4CC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"36C28462-97BE-4301-AB9D-767A41ECF732\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"31CB91C7-BDB7-4516-824D-33031130D644\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"1FBF5B4A-4808-40AC-BE3E-556059A46DB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"58E3E4B6-BFA8-4949-A38A-54B0AA68CE03\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:2915:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2F740778-4ED3-4C04-8972-8AA35609FE66\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"15.00.0\",\"versionEndIncluding\":\"15.16.0023\",\"matchCriteriaId\":\"4431D052-B211-4D66-AA0D-89F4658CBD2C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0\",\"versionEndExcluding\":\"16.02.0034\",\"matchCriteriaId\":\"0D3E9155-B665-46B3-8E0E-1FE3B3AE074C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.03.0\",\"versionEndIncluding\":\"16.04.0024\",\"matchCriteriaId\":\"7B44F763-9BE5-4212-8361-978E16FB306D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0\",\"versionEndExcluding\":\"16.08.0025\",\"matchCriteriaId\":\"DDB53B9C-CCD2-4A06-A79C-BF333EB3BB00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.09.0\",\"versionEndExcluding\":\"16.09.0020\",\"matchCriteriaId\":\"FCE5E234-D0B9-44D8-8565-56372E882E19\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0\",\"versionEndExcluding\":\"16.10.0020\",\"matchCriteriaId\":\"3FE38A01-532C-40E0-9FE8-E4C4E24BD53F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0\",\"versionEndExcluding\":\"16.11.0004\",\"matchCriteriaId\":\"DB16E4B3-4F3D-442E-9809-4354AB91CC02\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:3810m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"039E7DAB-A6BC-4382-9D6F-33BDA9DD560D\"}]}]}],\"references\":[{\"url\":\"https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt\",\"source\":\"security-alert@hpe.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

gsd-2022-23677

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2022-23677

Aliases

CVE-2022-23677

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2022-23677",
    "description": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities.",
    "id": "GSD-2022-23677"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2022-23677"
      ],
      "details": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities.",
      "id": "GSD-2022-23677",
      "modified": "2023-12-13T01:19:35.785550Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-alert@hpe.com",
        "ID": "CVE-2022-23677",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "ArubaOS-Switch Devices",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "ArubaOS-Switch 15.xx.xxxx: All versions"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.01.xxxx: All versions"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.03.xxxx: All versions"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.04.xxxx: All versions"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.05.xxxx: All versions"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.06.xxxx: All versions"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.07.xxxx: All versions"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below"
                        },
                        {
                          "version_value": "ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below."
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "remote execution of arbitrary code"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt",
            "refsource": "MISC",
            "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:5406r:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2920:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2930f:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2930m:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2530:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2540:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:5412r:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2615:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2620:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:2915:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          },
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "15.16.0023",
                    "versionStartIncluding": "15.00.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.02.0034",
                    "versionStartIncluding": "16.01.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndIncluding": "16.04.0024",
                    "versionStartIncluding": "16.03.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0025",
                    "versionStartIncluding": "16.05.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.09.0020",
                    "versionStartIncluding": "16.09.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0020",
                    "versionStartIncluding": "16.10.0",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0004",
                    "versionStartIncluding": "16.11.0",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:3810m:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security-alert@hpe.com",
          "ID": "CVE-2022-23677"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-787"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "MEDIUM",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 9.3,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 8.6,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.1,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 2.2,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2022-05-25T17:26Z",
      "publishedDate": "2022-05-10T19:15Z"
    }
  }
}

ghsa-68j5-wrhm-47cc

Vulnerability from github

Published

2022-05-11 00:01

Modified

2022-05-26 00:01

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2022-23677"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-787"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2022-05-10T19:15:00Z",
    "severity": "HIGH"
  },
  "details": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities.",
  "id": "GHSA-68j5-wrhm-47cc",
  "modified": "2022-05-26T00:01:18Z",
  "published": "2022-05-11T00:01:14Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2022-23677"
    },
    {
      "type": "WEB",
      "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

fkie_cve-2022-23677

Vulnerability from fkie_nvd

Published

2022-05-10 19:15

Modified

2024-11-21 06:49

Severity ?

8.1 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

	URL	Tags
	security-alert@hpe.com	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt	Vendor Advisory

Impacted products

Vendor	Product	Version
arubanetworks	5406r_firmware	*
arubanetworks	5406r_firmware	*
arubanetworks	5406r_firmware	*
arubanetworks	5406r_firmware	*
arubanetworks	5406r_firmware	*
arubanetworks	5406r_firmware	*
arubanetworks	5406r_firmware	*
arubanetworks	5406r	-
arubanetworks	2920_firmware	*
arubanetworks	2920_firmware	*
arubanetworks	2920_firmware	*
arubanetworks	2920_firmware	*
arubanetworks	2920_firmware	*
arubanetworks	2920_firmware	*
arubanetworks	2920_firmware	*
arubanetworks	2920	-
arubanetworks	2930f_firmware	*
arubanetworks	2930f_firmware	*
arubanetworks	2930f_firmware	*
arubanetworks	2930f_firmware	*
arubanetworks	2930f_firmware	*
arubanetworks	2930f_firmware	*
arubanetworks	2930f_firmware	*
arubanetworks	2930f	-
arubanetworks	2930m_firmware	*
arubanetworks	2930m_firmware	*
arubanetworks	2930m_firmware	*
arubanetworks	2930m_firmware	*
arubanetworks	2930m_firmware	*
arubanetworks	2930m_firmware	*
arubanetworks	2930m_firmware	*
arubanetworks	2930m	-
arubanetworks	2530_firmware	*
arubanetworks	2530_firmware	*
arubanetworks	2530_firmware	*
arubanetworks	2530_firmware	*
arubanetworks	2530_firmware	*
arubanetworks	2530_firmware	*
arubanetworks	2530_firmware	*
arubanetworks	2530	-
arubanetworks	2540_firmware	*
arubanetworks	2540_firmware	*
arubanetworks	2540_firmware	*
arubanetworks	2540_firmware	*
arubanetworks	2540_firmware	*
arubanetworks	2540_firmware	*
arubanetworks	2540_firmware	*
arubanetworks	2540	-
arubanetworks	5412r_firmware	*
arubanetworks	5412r_firmware	*
arubanetworks	5412r_firmware	*
arubanetworks	5412r_firmware	*
arubanetworks	5412r_firmware	*
arubanetworks	5412r_firmware	*
arubanetworks	5412r_firmware	*
arubanetworks	5412r	-
arubanetworks	2615_firmware	*
arubanetworks	2615_firmware	*
arubanetworks	2615_firmware	*
arubanetworks	2615_firmware	*
arubanetworks	2615_firmware	*
arubanetworks	2615_firmware	*
arubanetworks	2615_firmware	*
arubanetworks	2615	-
arubanetworks	2620_firmware	*
arubanetworks	2620_firmware	*
arubanetworks	2620_firmware	*
arubanetworks	2620_firmware	*
arubanetworks	2620_firmware	*
arubanetworks	2620_firmware	*
arubanetworks	2620_firmware	*
arubanetworks	2620	-
arubanetworks	2915_firmware	*
arubanetworks	2915_firmware	*
arubanetworks	2915_firmware	*
arubanetworks	2915_firmware	*
arubanetworks	2915_firmware	*
arubanetworks	2915_firmware	*
arubanetworks	2915_firmware	*
arubanetworks	2915	-
arubanetworks	3810m_firmware	*
arubanetworks	3810m_firmware	*
arubanetworks	3810m_firmware	*
arubanetworks	3810m_firmware	*
arubanetworks	3810m_firmware	*
arubanetworks	3810m_firmware	*
arubanetworks	3810m_firmware	*
arubanetworks	3810m	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B93568F8-DC8C-4345-8DE1-1CD78A033B77",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "359AC555-5349-4F4F-A867-A3EE40E72779",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "147EE3CC-3147-46DC-A7F3-B86EFF7B9DD6",
              "versionEndExcluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "254F604A-8BD7-4488-B7DD-40239D90000A",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C2043973-4752-4EE3-991F-2A22393D4BDE",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6D126AFA-087F-4255-8A4E-02ABFD42AAC6",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B33BEAC6-7BAD-4022-B127-2A2547F96901",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:5406r:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "837AB9B6-EF2C-4EE9-8DBA-621183594F5A",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9AC628A5-CB98-4A4F-AE6B-12D977D69291",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "72C955FB-DA01-46C0-A503-B04DB9E7BAAD",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2E3D389B-025B-4D2F-AEE2-682A306D8590",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BCF8476F-9CC3-4B4B-B617-12FDAACE1DFE",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CAF85FEE-21E3-42EC-9C3E-81E907AEBBC8",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE61EAD2-A7D5-4882-9154-B41946125D7D",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8F5BE378-7235-4248-965C-2496E548CA52",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2920:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "49A558E1-58CF-44DE-91D6-CCD2ABE05542",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0C99814A-A444-4F3B-B617-8B49D2B347A1",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "679DFE4F-BAE4-4034-A0AF-21DDB53849BB",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6CC5142C-3C94-4A13-9B6A-A3590AF1081C",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "889575E9-4729-4E97-986A-2564C110A766",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A2BF0015-99BD-4679-8F3E-8C80B7041822",
              "versionEndIncluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5D8A7488-85E6-452D-8157-19591891D703",
              "versionEndIncluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "781BFC5E-08FF-4FA3-878F-76651AC67173",
              "versionEndIncluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2930f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B3A860A-5810-43C0-834A-3F701286B719",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1D5EC3B3-208D-4C3D-9844-DEE60AA32BE0",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "833907D5-5B5C-4D78-9AF1-ECE7B2D2ED15",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "CAACB027-320E-461D-B35A-CBE90A019025",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "897D100F-C4C5-4C4D-AEC6-9E120594B1CE",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6F0408D0-EC1B-471C-B593-A9CA28431B05",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "607DF725-C73B-4EB0-9F79-8E246341C671",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B5F5BFA6-E454-4DCB-B3EE-629A65824F33",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2930m:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B0859BFB-4CEE-414C-BBA5-AC8C47508DD7",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "BF08F6C1-FBA9-4B16-86F9-3DBE85EE616F",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "68B3E4D9-7FBF-44D3-B956-C469D3D8C8F3",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF19378D-47FE-4148-9A22-DB64000A56F3",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "289F77CA-B5DE-466F-806C-30E49194E8F4",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "212CCB00-AFAE-493D-9BC5-4CDEFFB48BB2",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F4F1B66-FDD5-4B1D-A9CC-EF0BC60E7FFF",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "675367A1-89BC-4898-A7D4-44388AE38857",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2530:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "45857DA6-3886-4095-B89C-2D7EDBA73843",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "E40AC855-0986-478F-BC79-AB6A0861FBAA",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9AA5D364-51FE-41E9-A17A-921CE145B9D7",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F295F47D-5D8B-43C2-BACB-B169B5AC0575",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3883E16E-61E5-4F38-9C1D-B9808611A27D",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4943EC34-3AB3-46B8-9C49-37535FC841FF",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4DD0B3EA-212C-4793-90AD-30262735EE89",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0AE2173-FB26-4C2C-8C98-EDC7652B639F",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2540:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9DFFC632-14E9-49DC-AC70-915549150CAF",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "AFA6759C-F320-4527-AB92-DB32CCC99B06",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A0E53480-353B-492C-BBDE-2C0A7033C76A",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4EA4F624-7AC2-4A47-8B4C-CB2CC47D4DFA",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D60C474F-19FF-4CA9-88B5-D1598AF656E4",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6398019-D01F-4D8A-9099-1A943F118F05",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DD272BB2-DEB3-4489-B5B2-924E4213EB60",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "40061DCB-2FD8-48A7-B294-F257C330720C",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:5412r:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "689BE936-E585-4665-8B7E-C313AA2AB2AE",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "942D15B1-81AD-47B3-9AB2-3191FC6EAF60",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A6946CD-771A-41B9-8CBB-E7ADB4E73F7E",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "528AA06F-4380-449E-8745-49B5F8787EA4",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2ACB5412-1E27-4297-BCCE-FDC28E63022F",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "A883186F-A5C2-4094-BBF3-83E21AE7ED10",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "517CB6EA-1277-4895-B7E3-A7C1E9A3195B",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "07886BB9-68BC-4DBE-B997-7BE8504A34C7",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2615:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "90DD7F7A-86B9-45FA-B672-4DEFABE45E85",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "9B9FF083-8CEF-42FF-9C86-7DE79DE142A3",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F663B858-2263-4151-84E2-2A126AF9B979",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "30814AB5-D25F-4787-8A88-C46BD06B8804",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "B52BE87A-4CCF-4373-9397-7E79F6BAF8E8",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2ED2B48D-5E21-4FF5-9B3D-6D3A80EFC169",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "5E11B4E4-A024-4B98-BF75-50250374D08F",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "77C9BB4A-C325-45E9-869C-B744DD91EF01",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2620:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3CBBA246-5A52-4822-A9EB-BDC83B377EA3",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "8049B6D7-CD62-467B-AA75-832FDC883D2B",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "69302F97-5311-4847-9E2B-4D8CFC2A2496",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DFCAE1F2-483A-480D-AD05-8C9E9DF2B4CC",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "36C28462-97BE-4301-AB9D-767A41ECF732",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "31CB91C7-BDB7-4516-824D-33031130D644",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "1FBF5B4A-4808-40AC-BE3E-556059A46DB6",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "58E3E4B6-BFA8-4949-A38A-54B0AA68CE03",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:2915:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F740778-4ED3-4C04-8972-8AA35609FE66",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "4431D052-B211-4D66-AA0D-89F4658CBD2C",
              "versionEndIncluding": "15.16.0023",
              "versionStartIncluding": "15.00.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0D3E9155-B665-46B3-8E0E-1FE3B3AE074C",
              "versionEndExcluding": "16.02.0034",
              "versionStartIncluding": "16.01.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "7B44F763-9BE5-4212-8361-978E16FB306D",
              "versionEndIncluding": "16.04.0024",
              "versionStartIncluding": "16.03.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DDB53B9C-CCD2-4A06-A79C-BF333EB3BB00",
              "versionEndExcluding": "16.08.0025",
              "versionStartIncluding": "16.05.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "FCE5E234-D0B9-44D8-8565-56372E882E19",
              "versionEndExcluding": "16.09.0020",
              "versionStartIncluding": "16.09.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3FE38A01-532C-40E0-9FE8-E4C4E24BD53F",
              "versionEndExcluding": "16.10.0020",
              "versionStartIncluding": "16.10.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB16E4B3-4F3D-442E-9809-4354AB91CC02",
              "versionEndExcluding": "16.11.0004",
              "versionStartIncluding": "16.11.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:3810m:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "039E7DAB-A6BC-4382-9D6F-33BDA9DD560D",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."
    },
    {
      "lang": "es",
      "value": "Se ha detectado Una vulnerabilidad de Ejecuci\u00f3n de C\u00f3digo Remota arbitrario en las versiones de ArubaOS-Switch Devices: ArubaOS-Switch 15.xx.xxxx: Todas las versiones; ArubaOS-Switch 16.01.xxxx: Todas las versiones; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 e inferiores; ArubaOS-Switch 16.03.xxxx: Todas las versiones; ArubaOS-Switch 16.04.xxxx: Todas las versiones; ArubaOS-Switch 16.05.xxxx: Todas las versiones; ArubaOS-Switch 16.06.xxxx: Todas las versiones; ArubaOS-Switch 16.07.xxxx: Todas las versiones; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 y anteriores; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 y anteriores; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 y anteriores; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 y anteriores. Aruba ha publicado actualizaciones para ArubaOS-Switch Devices que abordan estas vulnerabilidades de seguridad"
    }
  ],
  "id": "CVE-2022-23677",
  "lastModified": "2024-11-21T06:49:04.657",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.1,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 2.2,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2022-05-10T19:15:09.220",
  "references": [
    {
      "source": "security-alert@hpe.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"
    }
  ],
  "sourceIdentifier": "security-alert@hpe.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-787"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2022-AVI-422

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans ArubaOS-Switch. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	ArubaOS-Switch versions 16.09.x antérieures à KB/WB/WC/YA/YB/YC.16.09.0020
N/A	N/A	ArubaOS-Switch toutes versions 16.01.x (en attente de correctif)
N/A	N/A	ArubaOS-Switch versions 16.02.x antérieures à K.16.02.0034
N/A	N/A	ArubaOS-Switch toutes versions 16.06.x (en attente de correctif)
N/A	N/A	ArubaOS-Switch versions 16.11.x antérieures à KB/WB/WC/YA/YB/YC.16.11.0004
N/A	N/A	ArubaOS-Switch toutes versions 16.05.x (en attente de correctif)
N/A	N/A	ArubaOS-Switch versions 16.10.x antérieures à KB/WB/WC/YA/YB/YC.16.10.0020
N/A	N/A	ArubaOS-Switch toutes versions 16.04.x (en attente de correctif)
N/A	N/A	ArubaOS-Switch toutes versions 15.x.x (en attente de correctif)
N/A	N/A	ArubaOS-Switch versions 16.08.x antérieures à KB/WB/WC/YA/YB/YC.16.08.0025
N/A	N/A	ArubaOS-Switch toutes versions 16.03.x (en attente de correctif)
N/A	N/A	ArubaOS-Switch toutes versions 16.07.x (en attente de correctif)

References

Title

Publication Time

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2022-23677 (GCVE-0-2022-23677)

Vulnerability from cvelistv5

gsd-2022-23677

Vulnerability from gsd

ghsa-68j5-wrhm-47cc

Vulnerability from github

fkie_cve-2022-23677

Vulnerability from fkie_nvd

CERTFR-2022-AVI-422

Vulnerability from certfr_avis

Solution

Tags

Sightings

Nomenclature