cvelistv5 - CVE-2023-39266

CVE-2023-39266 (GCVE-0-2023-39266)

Vulnerability from cvelistv5

Published

2023-08-29 19:20

Modified

2024-09-27 21:56

Severity ?

8.3 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Summary

A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface.

References

URL

Tags

	security-alert@hpe.com	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt	Vendor Advisory

Impacted products

	Vendor	Product	Version
	Hewlett Packard Enterprise	ArubaOS-Switch	Version: ArubaOS-Switch 16.11.xxxx: KB/WC/YA/YB/YC.16.11.0012 and below. Version: ArubaOS-Switch 16.10.xxxx: KB/WC/YA/YB/YC.16.10.0025 and below. Version: ArubaOS-Switch 16.10.xxxx: WB.16.10.23 and below. Version: ArubaOS-Switch 16.09.xxxx: All versions. Version: ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0026 and below. Version: ArubaOS-Switch 16.07.xxxx: All versions. Version: ArubaOS-Switch 16.06.xxxx: All versions. Version: ArubaOS-Switch 16.05.xxxx: All versions. Version: ArubaOS-Switch 16.04.xxxx: KA/RA.16.04.0026 and below. Version: ArubaOS-Switch 16.03.xxxx: All versions. Version: ArubaOS-Switch 16.02.xxxx: All versions. Version: ArubaOS-Switch 16.01.xxxx: All versions. Version: ArubaOS-Switch 15.xx.xxxx: 15.16.0025 and below.

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T18:02:06.889Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_transferred"
            ],
            "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-39266",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2024-09-27T21:49:17.160778Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2024-09-27T21:56:37.037Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "defaultStatus": "affected",
          "product": "ArubaOS-Switch",
          "vendor": "Hewlett Packard Enterprise",
          "versions": [
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.11.xxxx: KB/WC/YA/YB/YC.16.11.0012 and below."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.10.xxxx: KB/WC/YA/YB/YC.16.10.0025 and below."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.10.xxxx: WB.16.10.23 and below."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.09.xxxx: All versions."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0026 and below."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.07.xxxx: All versions."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.06.xxxx: All versions."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.05.xxxx: All versions."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.04.xxxx: KA/RA.16.04.0026 and below."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.03.xxxx: All versions."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.02.xxxx: All versions."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 16.01.xxxx: All versions."
            },
            {
              "status": "affected",
              "version": "ArubaOS-Switch 15.xx.xxxx: 15.16.0025 and below."
            }
          ]
        }
      ],
      "credits": [
        {
          "lang": "en",
          "type": "reporter",
          "user": "00000000-0000-4000-9000-000000000000",
          "value": "Ken Pyle - Partner and Exploit Developer, CYBIR and Graduate     Professor of Cybersecurity at Chestnut Hill College"
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "supportingMedia": [
            {
              "base64": false,
              "type": "text/html",
              "value": "\u003cpre\u003eA vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\u003c/pre\u003e\u003cbr\u003e"
            }
          ],
          "value": "A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\n\n\n"
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          },
          "format": "CVSS",
          "scenarios": [
            {
              "lang": "en",
              "value": "GENERAL"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2023-08-29T19:20:20.829Z",
        "orgId": "eb103674-0d28-4225-80f8-39fb86215de0",
        "shortName": "hpe"
      },
      "references": [
        {
          "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt"
        }
      ],
      "source": {
        "discovery": "UNKNOWN"
      },
      "title": "Unauthenticated Stored Cross-Site Scripting in ArubaOS-Switch",
      "x_generator": {
        "engine": "Vulnogram 0.1.0-dev"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0",
    "assignerShortName": "hpe",
    "cveId": "CVE-2023-39266",
    "datePublished": "2023-08-29T19:20:18.105Z",
    "dateReserved": "2023-07-26T15:52:27.843Z",
    "dateUpdated": "2024-09-27T21:56:37.037Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-39266\",\"sourceIdentifier\":\"security-alert@hpe.com\",\"published\":\"2023-08-29T20:15:09.637\",\"lastModified\":\"2024-11-21T08:15:01.040\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\\n\\n\\n\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en la interfaz de administraci\u00f3n web de ArubaOS-Switch podr\u00eda permitir que un atacante remoto no autenticado lleve a cabo un ataque de cross-site scripting (XSS) almacenado contra un usuario de la interfaz, siempre que ciertas opciones de configuraci\u00f3n est\u00e9n presentes. Un exploit exitoso podr\u00eda permitir a un atacante ejecutar c\u00f3digo de script arbitrario en el navegador de la v\u00edctima en el contexto de la interfaz afectada.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-alert@hpe.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H\",\"baseScore\":8.3,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.6,\"impactScore\":6.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N\",\"baseScore\":6.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"REQUIRED\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"LOW\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.8,\"impactScore\":2.7}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-79\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"a.15.16.0026\",\"matchCriteriaId\":\"6EF6288C-3E1F-4E2F-BDE2-319E6774F1BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.01.0000\",\"versionEndExcluding\":\"16.04.0027\",\"matchCriteriaId\":\"D421C423-B11A-43F0-A0E9-9ABD0CC3E7A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.05.0000\",\"versionEndExcluding\":\"16.08.0027\",\"matchCriteriaId\":\"90E95208-9E6A-4A27-91EF-EFF9EBB5CDF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.10.0001\",\"versionEndExcluding\":\"16.10.0024\",\"matchCriteriaId\":\"3A977A83-A7F4-4FE7-9AC9-5584801CC039\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"16.11.0001\",\"versionEndExcluding\":\"16.11.0013\",\"matchCriteriaId\":\"EF10EBA8-E257-4E81-8B5A-04E643FD27F4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_2530:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA0DC0DE-5F4A-4D2A-AFCA-E36A103D5A6E\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_2530ya:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B8251986-B9F2-4345-A4D7-EB3737F12AE0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_2530yb:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3D7A8F42-55C8-4A2B-8A34-1B1B8BE3BEDF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_2540:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FDEDD15E-289E-4B15-8620-547EA19CAEE7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_2920:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1782D4A-AD68-4BD2-8453-EE22BCF2DC99\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_2930f:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97C4FCD2-BB70-4848-B08A-223B5C3467BB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_2930m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2561E158-FB61-4FFD-B680-DADF7BC2C6D1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_3810m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3CE933B-68BA-45BA-81BD-95D873B858B1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_5406r_zl2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E982204-9ADC-4242-86C2-A407D6EA7DB0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arubanetworks:aruba_5412r_zl2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8549CD94-50E2-4615-94C2-D76FADFBA3AC\"}]}]}],\"references\":[{\"url\":\"https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt\",\"source\":\"security-alert@hpe.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"cna\": {\"affected\": [{\"defaultStatus\": \"affected\", \"product\": \"ArubaOS-Switch\", \"vendor\": \"Hewlett Packard Enterprise\", \"versions\": [{\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.11.xxxx: KB/WC/YA/YB/YC.16.11.0012 and below.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.10.xxxx: KB/WC/YA/YB/YC.16.10.0025 and below.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.10.xxxx: WB.16.10.23 and below.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.09.xxxx: All versions.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0026 and below.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.07.xxxx: All versions.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.06.xxxx: All versions.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.05.xxxx: All versions.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.04.xxxx: KA/RA.16.04.0026 and below.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.03.xxxx: All versions.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.02.xxxx: All versions.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 16.01.xxxx: All versions.\"}, {\"status\": \"affected\", \"version\": \"ArubaOS-Switch 15.xx.xxxx: 15.16.0025 and below.\"}]}], \"credits\": [{\"lang\": \"en\", \"type\": \"reporter\", \"user\": \"00000000-0000-4000-9000-000000000000\", \"value\": \"Ken Pyle - Partner and Exploit Developer, CYBIR and Graduate     Professor of Cybersecurity at Chestnut Hill College\"}], \"descriptions\": [{\"lang\": \"en\", \"supportingMedia\": [{\"base64\": false, \"type\": \"text/html\", \"value\": \"\u003cpre\u003eA vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\u003c/pre\u003e\u003cbr\u003e\"}], \"value\": \"A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\\n\\n\\n\"}], \"metrics\": [{\"cvssV3_1\": {\"attackComplexity\": \"HIGH\", \"attackVector\": \"NETWORK\", \"availabilityImpact\": \"HIGH\", \"baseScore\": 8.3, \"baseSeverity\": \"HIGH\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"scope\": \"CHANGED\", \"userInteraction\": \"REQUIRED\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H\", \"version\": \"3.1\"}, \"format\": \"CVSS\", \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"providerMetadata\": {\"orgId\": \"eb103674-0d28-4225-80f8-39fb86215de0\", \"shortName\": \"hpe\", \"dateUpdated\": \"2023-08-29T19:20:20.829Z\"}, \"references\": [{\"url\": \"https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt\"}], \"source\": {\"discovery\": \"UNKNOWN\"}, \"title\": \"Unauthenticated Stored Cross-Site Scripting in ArubaOS-Switch\", \"x_generator\": {\"engine\": \"Vulnogram 0.1.0-dev\"}}, \"adp\": [{\"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T18:02:06.889Z\"}, \"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt\", \"tags\": [\"x_transferred\"]}]}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-39266\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-09-27T21:49:17.160778Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-09-27T21:49:18.769Z\"}}]}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-39266\", \"assignerOrgId\": \"eb103674-0d28-4225-80f8-39fb86215de0\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"hpe\", \"dateReserved\": \"2023-07-26T15:52:27.843Z\", \"datePublished\": \"2023-08-29T19:20:18.105Z\", \"dateUpdated\": \"2024-09-27T21:56:37.037Z\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

gsd-2023-39266

Vulnerability from gsd

Modified

2023-12-13 01:20

Details

Aliases

CVE-2023-39266

Aliases

CVE-2023-39266

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-39266",
    "id": "GSD-2023-39266"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-39266"
      ],
      "details": "A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\n\n\n",
      "id": "GSD-2023-39266",
      "modified": "2023-12-13T01:20:33.664107Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "security-alert@hpe.com",
        "ID": "CVE-2023-39266",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "ArubaOS-Switch",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "not down converted",
                          "x_cve_json_5_version_data": {
                            "defaultStatus": "affected",
                            "versions": [
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.11.xxxx: KB/WC/YA/YB/YC.16.11.0012 and below."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.10.xxxx: KB/WC/YA/YB/YC.16.10.0025 and below."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.10.xxxx: WB.16.10.23 and below."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.09.xxxx: All versions."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0026 and below."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.07.xxxx: All versions."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.06.xxxx: All versions."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.05.xxxx: All versions."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.04.xxxx: KA/RA.16.04.0026 and below."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.03.xxxx: All versions."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.02.xxxx: All versions."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 16.01.xxxx: All versions."
                              },
                              {
                                "status": "affected",
                                "version": "ArubaOS-Switch 15.xx.xxxx: 15.16.0025 and below."
                              }
                            ]
                          }
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Hewlett Packard Enterprise"
            }
          ]
        }
      },
      "credits": [
        {
          "lang": "en",
          "value": "Ken Pyle - Partner and Exploit Developer, CYBIR and Graduate     Professor of Cybersecurity at Chestnut Hill College"
        }
      ],
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\n\n\n"
          }
        ]
      },
      "generator": {
        "engine": "Vulnogram 0.1.0-dev"
      },
      "impact": {
        "cvss": [
          {
            "attackComplexity": "HIGH",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 8.3,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt",
            "refsource": "MISC",
            "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt"
          }
        ]
      },
      "source": {
        "discovery": "UNKNOWN"
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "a.15.16.0026",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.04.0027",
                    "versionStartIncluding": "16.01.0000",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.08.0027",
                    "versionStartIncluding": "16.05.0000",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.10.0024",
                    "versionStartIncluding": "16.10.0001",
                    "vulnerable": true
                  },
                  {
                    "cpe23Uri": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "16.11.0013",
                    "versionStartIncluding": "16.11.0001",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_2530:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_2530ya:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_2530yb:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_2540:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_2920:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_2930f:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_2930m:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_3810m:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_5406r_zl2:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:arubanetworks:aruba_5412r_zl2:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "security-alert@hpe.com",
          "ID": "CVE-2023-39266"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\n\n\n"
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-79"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt",
              "refsource": "MISC",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 6.1,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "LOW",
            "integrityImpact": "LOW",
            "privilegesRequired": "NONE",
            "scope": "CHANGED",
            "userInteraction": "REQUIRED",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
            "version": "3.1"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 2.7
        }
      },
      "lastModifiedDate": "2023-09-11T13:38Z",
      "publishedDate": "2023-08-29T20:15Z"
    }
  }
}

WID-SEC-W-2023-2203

Vulnerability from csaf_certbund

Published

2023-08-29 22:00

Modified

2023-08-30 22:00

Summary

Aruba Switch: Mehrere Schwachstellen

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Ein Switch ist ein aktives Netzwerkgerät, das Datenpakete auf dem Data Link Layer (Layer 2) des OSI-Modells weiterleitet.

Angriff

Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in Aruba Switch ausnutzen, um einen Cross-Site-Scripting-Angriff zu starten, einen Denial-of-Service-Zustand zu verursachen und beliebigen Code als privilegierter Benutzer auszuführen.

Betroffene Betriebssysteme

- BIOS/Firmware

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Ein Switch ist ein aktives Netzwerkger\u00e4t, das Datenpakete auf dem Data Link Layer (Layer 2) des OSI-Modells weiterleitet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in Aruba Switch ausnutzen, um einen Cross-Site-Scripting-Angriff zu starten, einen Denial-of-Service-Zustand zu verursachen und beliebigen Code als privilegierter Benutzer auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- BIOS/Firmware",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2203 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2203.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2203 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2203"
      },
      {
        "category": "external",
        "summary": "HPE SecurityBulletin",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbnw04533en_us"
      },
      {
        "category": "external",
        "summary": "Proof of Concept f\u00fcr CVE-2023-39266",
        "url": "https://cybir.com/2022/cve/layer7mattersatlayer2-coolhandluke/"
      },
      {
        "category": "external",
        "summary": "HPE Aruba Networking Product Security Advisory vom 2023-08-29",
        "url": "https://www.arubanetworks.com/security-advisory/arubaos-switch-switches-multiple-vulnerabilities/"
      }
    ],
    "source_lang": "en-US",
    "title": "Aruba Switch: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-08-30T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:57:47.243+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2203",
      "initial_release_date": "2023-08-29T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-08-29T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-08-30T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von HP aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Aruba ArubaOS",
            "product": {
              "name": "Aruba ArubaOS",
              "product_id": "T016785",
              "product_identification_helper": {
                "cpe": "cpe:/o:arubanetworks:arubaos:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Aruba Switch",
            "product": {
              "name": "Aruba Switch",
              "product_id": "T029625",
              "product_identification_helper": {
                "cpe": "cpe:/h:arubanetworks:switch:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Aruba"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HPE Switch Aruba",
            "product": {
              "name": "HPE Switch Aruba",
              "product_id": "T029645",
              "product_identification_helper": {
                "cpe": "cpe:/h:hp:switch:aruba"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HPE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-39268",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Aruba Switch. Dieser Fehler ist auf eine Speicherbesch\u00e4digung zur\u00fcckzuf\u00fchren. Ein entfernter Angreifer kann beliebigen Code als privilegierter Benutzer des zugrunde liegenden Betriebssystems ausf\u00fchren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029625",
          "T029645",
          "T016785"
        ]
      },
      "release_date": "2023-08-29T22:00:00.000+00:00",
      "title": "CVE-2023-39268"
    },
    {
      "cve": "CVE-2023-39267",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Aruba Switch. Dieser Fehler besteht in der Befehlszeilenschnittstelle. Ein entfernter Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029625",
          "T029645",
          "T016785"
        ]
      },
      "release_date": "2023-08-29T22:00:00.000+00:00",
      "title": "CVE-2023-39267"
    },
    {
      "cve": "CVE-2023-39266",
      "notes": [
        {
          "category": "description",
          "text": "In Aruba Switch wurde eine Cross-Site Scripting-Schwachstelle festgestellt. Dieses Problem wird durch eine unsachgem\u00e4\u00dfe Filterung der vom Benutzer bereitgestellten Daten in der Webverwaltungsschnittstelle vor der Anzeige der Eingaben verursacht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um beliebigen Skriptcode im Sicherheitskontext einer betroffenen Site auszuf\u00fchren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029625",
          "T029645",
          "T016785"
        ]
      },
      "release_date": "2023-08-29T22:00:00.000+00:00",
      "title": "CVE-2023-39266"
    }
  ]
}

wid-sec-w-2023-2203

Vulnerability from csaf_certbund

Published

2023-08-29 22:00

Modified

2023-08-30 22:00

Summary

Aruba Switch: Mehrere Schwachstellen

Notes

Produktbeschreibung

Ein Switch ist ein aktives Netzwerkgerät, das Datenpakete auf dem Data Link Layer (Layer 2) des OSI-Modells weiterleitet.

Angriff

Betroffene Betriebssysteme

- BIOS/Firmware

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "hoch"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Ein Switch ist ein aktives Netzwerkger\u00e4t, das Datenpakete auf dem Data Link Layer (Layer 2) des OSI-Modells weiterleitet.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein entfernter anonymer Angreifer kann mehrere Schwachstellen in Aruba Switch ausnutzen, um einen Cross-Site-Scripting-Angriff zu starten, einen Denial-of-Service-Zustand zu verursachen und beliebigen Code als privilegierter Benutzer auszuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- BIOS/Firmware",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2203 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2203.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2203 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2203"
      },
      {
        "category": "external",
        "summary": "HPE SecurityBulletin",
        "url": "https://support.hpe.com/hpesc/public/docDisplay?docId=emr_na-hpesbnw04533en_us"
      },
      {
        "category": "external",
        "summary": "Proof of Concept f\u00fcr CVE-2023-39266",
        "url": "https://cybir.com/2022/cve/layer7mattersatlayer2-coolhandluke/"
      },
      {
        "category": "external",
        "summary": "HPE Aruba Networking Product Security Advisory vom 2023-08-29",
        "url": "https://www.arubanetworks.com/security-advisory/arubaos-switch-switches-multiple-vulnerabilities/"
      }
    ],
    "source_lang": "en-US",
    "title": "Aruba Switch: Mehrere Schwachstellen",
    "tracking": {
      "current_release_date": "2023-08-30T22:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T17:57:47.243+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2203",
      "initial_release_date": "2023-08-29T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-08-29T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        },
        {
          "date": "2023-08-30T22:00:00.000+00:00",
          "number": "2",
          "summary": "Neue Updates von HP aufgenommen"
        }
      ],
      "status": "final",
      "version": "2"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_name",
            "name": "Aruba ArubaOS",
            "product": {
              "name": "Aruba ArubaOS",
              "product_id": "T016785",
              "product_identification_helper": {
                "cpe": "cpe:/o:arubanetworks:arubaos:-"
              }
            }
          },
          {
            "category": "product_name",
            "name": "Aruba Switch",
            "product": {
              "name": "Aruba Switch",
              "product_id": "T029625",
              "product_identification_helper": {
                "cpe": "cpe:/h:arubanetworks:switch:-"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "Aruba"
      },
      {
        "branches": [
          {
            "category": "product_name",
            "name": "HPE Switch Aruba",
            "product": {
              "name": "HPE Switch Aruba",
              "product_id": "T029645",
              "product_identification_helper": {
                "cpe": "cpe:/h:hp:switch:aruba"
              }
            }
          }
        ],
        "category": "vendor",
        "name": "HPE"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-39268",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Aruba Switch. Dieser Fehler ist auf eine Speicherbesch\u00e4digung zur\u00fcckzuf\u00fchren. Ein entfernter Angreifer kann beliebigen Code als privilegierter Benutzer des zugrunde liegenden Betriebssystems ausf\u00fchren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029625",
          "T029645",
          "T016785"
        ]
      },
      "release_date": "2023-08-29T22:00:00.000+00:00",
      "title": "CVE-2023-39268"
    },
    {
      "cve": "CVE-2023-39267",
      "notes": [
        {
          "category": "description",
          "text": "Es besteht eine Schwachstelle in Aruba Switch. Dieser Fehler besteht in der Befehlszeilenschnittstelle. Ein entfernter Angreifer kann diese Schwachstelle ausnutzen, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029625",
          "T029645",
          "T016785"
        ]
      },
      "release_date": "2023-08-29T22:00:00.000+00:00",
      "title": "CVE-2023-39267"
    },
    {
      "cve": "CVE-2023-39266",
      "notes": [
        {
          "category": "description",
          "text": "In Aruba Switch wurde eine Cross-Site Scripting-Schwachstelle festgestellt. Dieses Problem wird durch eine unsachgem\u00e4\u00dfe Filterung der vom Benutzer bereitgestellten Daten in der Webverwaltungsschnittstelle vor der Anzeige der Eingaben verursacht. Ein entfernter, anonymer Angreifer kann diese Schwachstelle ausnutzen, um beliebigen Skriptcode im Sicherheitskontext einer betroffenen Site auszuf\u00fchren. Eine erfolgreiche Ausnutzung erfordert eine Benutzerinteraktion."
        }
      ],
      "product_status": {
        "known_affected": [
          "T029625",
          "T029645",
          "T016785"
        ]
      },
      "release_date": "2023-08-29T22:00:00.000+00:00",
      "title": "CVE-2023-39266"
    }
  ]
}

fkie_cve-2023-39266

Vulnerability from fkie_nvd

Published

2023-08-29 20:15

Modified

2024-11-21 08:15

Severity ?

8.3 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H
6.1 (Medium) - CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Summary

References

	URL	Tags
	security-alert@hpe.com	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt	Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt	Vendor Advisory

Impacted products

Vendor	Product	Version
hpe	arubaos-switch	*
hpe	arubaos-switch	*
hpe	arubaos-switch	*
hpe	arubaos-switch	*
hpe	arubaos-switch	*
arubanetworks	aruba_2530	-
arubanetworks	aruba_2530ya	-
arubanetworks	aruba_2530yb	-
arubanetworks	aruba_2540	-
arubanetworks	aruba_2920	-
arubanetworks	aruba_2930f	-
arubanetworks	aruba_2930m	-
arubanetworks	aruba_3810m	-
arubanetworks	aruba_5406r_zl2	-
arubanetworks	aruba_5412r_zl2	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "6EF6288C-3E1F-4E2F-BDE2-319E6774F1BD",
              "versionEndExcluding": "a.15.16.0026",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "D421C423-B11A-43F0-A0E9-9ABD0CC3E7A9",
              "versionEndExcluding": "16.04.0027",
              "versionStartIncluding": "16.01.0000",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "90E95208-9E6A-4A27-91EF-EFF9EBB5CDF0",
              "versionEndExcluding": "16.08.0027",
              "versionStartIncluding": "16.05.0000",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A977A83-A7F4-4FE7-9AC9-5584801CC039",
              "versionEndExcluding": "16.10.0024",
              "versionStartIncluding": "16.10.0001",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:hpe:arubaos-switch:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "EF10EBA8-E257-4E81-8B5A-04E643FD27F4",
              "versionEndExcluding": "16.11.0013",
              "versionStartIncluding": "16.11.0001",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_2530:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CA0DC0DE-5F4A-4D2A-AFCA-E36A103D5A6E",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_2530ya:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B8251986-B9F2-4345-A4D7-EB3737F12AE0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_2530yb:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3D7A8F42-55C8-4A2B-8A34-1B1B8BE3BEDF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_2540:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FDEDD15E-289E-4B15-8620-547EA19CAEE7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_2920:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B1782D4A-AD68-4BD2-8453-EE22BCF2DC99",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_2930f:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "97C4FCD2-BB70-4848-B08A-223B5C3467BB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_2930m:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2561E158-FB61-4FFD-B680-DADF7BC2C6D1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_3810m:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F3CE933B-68BA-45BA-81BD-95D873B858B1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_5406r_zl2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E982204-9ADC-4242-86C2-A407D6EA7DB0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:arubanetworks:aruba_5412r_zl2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8549CD94-50E2-4615-94C2-D76FADFBA3AC",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\n\n\n"
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en la interfaz de administraci\u00f3n web de ArubaOS-Switch podr\u00eda permitir que un atacante remoto no autenticado lleve a cabo un ataque de cross-site scripting (XSS) almacenado contra un usuario de la interfaz, siempre que ciertas opciones de configuraci\u00f3n est\u00e9n presentes. Un exploit exitoso podr\u00eda permitir a un atacante ejecutar c\u00f3digo de script arbitrario en el navegador de la v\u00edctima en el contexto de la interfaz afectada."
    }
  ],
  "id": "CVE-2023-39266",
  "lastModified": "2024-11-21T08:15:01.040",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "HIGH",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 8.3,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.6,
        "impactScore": 6.0,
        "source": "security-alert@hpe.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 6.1,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "LOW",
          "integrityImpact": "LOW",
          "privilegesRequired": "NONE",
          "scope": "CHANGED",
          "userInteraction": "REQUIRED",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N",
          "version": "3.1"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 2.7,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-08-29T20:15:09.637",
  "references": [
    {
      "source": "security-alert@hpe.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt"
    }
  ],
  "sourceIdentifier": "security-alert@hpe.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CERTFR-2023-AVI-0700

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans Aruba ArubaOS-Switch. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une injection de code indirecte à distance (XSS).

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	ArubaOS-Switch versions 16.04.xxxx antérieures à KA/RA.16.04.0027
N/A	N/A	ArubaOS-Switch versions 16.10.xxxx et 16.11.xxxx antérieures à KB/WC/YA/YB/YC.16.11.0013
N/A	N/A	ArubaOS-Switch versions 16.08.xxxx antérieures à KB/WB/WC/YA/YB/YC.16.08.0027
N/A	N/A	ArubaOS-Switch versions 15.xx.xxxx antérieures à A.15.16.0026

References

Title

Publication Time

ghsa-h6rg-gj7h-m8mx

Vulnerability from github

Published

2023-08-29 21:30

Modified

2024-04-04 07:15

Severity ?

8.3 (High) - CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-39266"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-79"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-08-29T20:15:09Z",
    "severity": "MODERATE"
  },
  "details": "A vulnerability in the ArubaOS-Switch web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface provided certain configuration options are present. A successful exploit could allow an attacker to execute arbitrary script code in a victim\u0027s browser in the context of the affected interface.\n\n\n",
  "id": "GHSA-h6rg-gj7h-m8mx",
  "modified": "2024-04-04T07:15:34Z",
  "published": "2023-08-29T21:30:21Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-39266"
    },
    {
      "type": "WEB",
      "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-013.txt"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2023-39266 (GCVE-0-2023-39266)

Vulnerability from cvelistv5

gsd-2023-39266

Vulnerability from gsd

WID-SEC-W-2023-2203

Vulnerability from csaf_certbund

wid-sec-w-2023-2203

Vulnerability from csaf_certbund

fkie_cve-2023-39266

Vulnerability from fkie_nvd

CERTFR-2023-AVI-0700

Vulnerability from certfr_avis

Solution

ghsa-h6rg-gj7h-m8mx

Vulnerability from github

Tags

Sightings

Nomenclature