An authenticated remote command injection vulnerability exists in the ArubaOS web-based management interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to fully compromise the underlying operating system on the device running ArubaOS.
Metrics
Affected Vendors & Products
References
History
Wed, 04 Dec 2024 16:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: hpe
Published: 2023-07-05T14:44:42.156Z
Updated: 2024-12-04T15:41:16.557Z
Reserved: 2023-06-20T18:41:22.736Z
Link: CVE-2023-35972
Vulnrichment
Updated: 2024-08-02T16:37:40.514Z
NVD
Status : Modified
Published: 2023-07-05T15:15:09.367
Modified: 2024-11-21T08:09:05.240
Link: CVE-2023-35972
Redhat
No data.