Lucene search

[email protected]CVE-2008-2273

HistoryMay 16, 2008 - 12:54 p.m.

CVE-2008-2273

2008-05-1612:54:00

[email protected]

web.nvd.nist.gov

cve-2008-2273

vulnerability

tacacs

authentication

aruba mobility controller

privilege escalation

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.6%

JSON

Unspecified vulnerability in the TACACS authentication component in Aruba Mobility Controller 3.1.x, 3.2.x, and 3.3.x allows remote authenticated users to gain privileges via unknown vectors.

Affected configurations

NVD

Node

arubanetworksarubaosRange≤3.3

arubanetworksarubaosMatch3.1

arubanetworksarubaosMatch3.2

AND

arubanetworksaruba_mobility__controller

CPENameOperatorVersion
arubanetworks:arubaosarubanetworks arubaosle3.3
arubanetworks:arubaosarubanetworks arubaoseq3.1
arubanetworks:arubaosarubanetworks arubaoseq3.2

CPE	Name	Operator	Version
arubanetworks:arubaos	arubanetworks arubaos	le	3.3
arubanetworks:arubaos	arubanetworks arubaos	eq	3.1
arubanetworks:arubaos	arubanetworks arubaos	eq	3.2

References

secunia.com/advisories/30262

www.arubanetworks.com/support/alerts/aid-051408.asc

www.securityfocus.com/archive/1/492113/100/0/threaded

www.securityfocus.com/bid/29240

www.securitytracker.com/id?1020032

exchange.xforce.ibmcloud.com/vulnerabilities/42434

9 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

6.7 Medium

AI Score

Confidence

Low

0.005 Low

EPSS

Percentile

76.6%

JSON

Related for CVE-2008-2273

nvd1 prion1 cvelist1