Lucene search

HpeCVE-2021-41005

HistoryApr 12, 2022 - 5:15 p.m.

CVE-2021-41005

2022-04-1217:15:08

hpe

web.nvd.nist.gov

cve-2021-41005

aruba instant on

1930 switch series

remote vulnerability

firmware vulnerability

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

35.0%

JSON

A remote vulnerability was discovered in Aruba Instant On 1930 Switch Series version(s): Firmware below v1.0.7.0.

Affected configurations

Nvd

Node

hpearuba_instant_on_1930_8g_2sfp_firmwareRange<1.0.7.0

AND

hpearuba_instant_on_1930_8g_2sfpMatch-

Node

hpearuba_instant_on_1930_8g_class4_poe_2sfp_124w_firmwareRange<1.0.7.0

AND

hpearuba_instant_on_1930_8g_class4_poe_2sfp_124wMatch-

Node

hpearuba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w_firmwareRange<1.0.7.0

AND

hpearuba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370wMatch-

Node

hpearuba_instant_on_1930_48g_4sfp\/sfp\+_firmwareRange<1.0.7.0

AND

hpearuba_instant_on_1930_48g_4sfp\/sfp\+Match-

Node

hpearuba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w_firmwareRange<1.0.7.0

AND

hpearuba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370wMatch-

Node

hpearuba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_195w_firmwareRange<1.0.7.0

AND

hpearuba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_195wMatch-

Node

hpearuba_instant_on_1930_24g_4sfp\/sfp\+Match-

AND

hpearuba_instant_on_1930_24g_4sfp\/sfp\+_firmwareRange<1.0.7.0

VendorProductVersionCPE
hpearuba_instant_on_1930_8g_2sfp_firmware*cpe:2.3:o:hpe:aruba_instant_on_1930_8g_2sfp_firmware:*:*:*:*:*:*:*:*
hpearuba_instant_on_1930_8g_2sfp-cpe:2.3:h:hpe:aruba_instant_on_1930_8g_2sfp:-:*:*:*:*:*:*:*
hpearuba_instant_on_1930_8g_class4_poe_2sfp_124w_firmware*cpe:2.3:o:hpe:aruba_instant_on_1930_8g_class4_poe_2sfp_124w_firmware:*:*:*:*:*:*:*:*
hpearuba_instant_on_1930_8g_class4_poe_2sfp_124w-cpe:2.3:h:hpe:aruba_instant_on_1930_8g_class4_poe_2sfp_124w:-:*:*:*:*:*:*:*
hpearuba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w_firmware*cpe:2.3:o:hpe:aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w_firmware:*:*:*:*:*:*:*:*
hpearuba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w-cpe:2.3:h:hpe:aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w:-:*:*:*:*:*:*:*
hpearuba_instant_on_1930_48g_4sfp\/sfp\+_firmware*cpe:2.3:o:hpe:aruba_instant_on_1930_48g_4sfp\/sfp\+_firmware:*:*:*:*:*:*:*:*
hpearuba_instant_on_1930_48g_4sfp\/sfp\+-cpe:2.3:h:hpe:aruba_instant_on_1930_48g_4sfp\/sfp\+:-:*:*:*:*:*:*:*
hpearuba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w_firmware*cpe:2.3:o:hpe:aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w_firmware:*:*:*:*:*:*:*:*
hpearuba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w-cpe:2.3:h:hpe:aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hpe	aruba_instant_on_1930_8g_2sfp_firmware	*	cpe:2.3:o:hpe:aruba_instant_on_1930_8g_2sfp_firmware::::::::
hpe	aruba_instant_on_1930_8g_2sfp	-	cpe:2.3:h:hpe:aruba_instant_on_1930_8g_2sfp:-:::::::*
hpe	aruba_instant_on_1930_8g_class4_poe_2sfp_124w_firmware	*	cpe:2.3:o:hpe:aruba_instant_on_1930_8g_class4_poe_2sfp_124w_firmware::::::::
hpe	aruba_instant_on_1930_8g_class4_poe_2sfp_124w	-	cpe:2.3:h:hpe:aruba_instant_on_1930_8g_class4_poe_2sfp_124w:-:::::::*
hpe	aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w_firmware	*	cpe:2.3:o:hpe:aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w_firmware::::::::
hpe	aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w	-	cpe:2.3:h:hpe:aruba_instant_on_1930_48g_class4_poe_4sfp\/sfp\+_370w:-:::::::*
hpe	aruba_instant_on_1930_48g_4sfp\/sfp\+_firmware	*	cpe:2.3:o:hpe:aruba_instant_on_1930_48g_4sfp\/sfp\+_firmware::::::::
hpe	aruba_instant_on_1930_48g_4sfp\/sfp\+	-	cpe:2.3:h:hpe:aruba_instant_on_1930_48g_4sfp\/sfp\+:-:::::::*
hpe	aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w_firmware	*	cpe:2.3:o:hpe:aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w_firmware::::::::
hpe	aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w	-	cpe:2.3:h:hpe:aruba_instant_on_1930_24g_class4_poe_4sfp\/sfp\+_370w:-:::::::*

Rows per page:

1-10 of 141

CNA Affected

[
  {
    "product": "Aruba Instant On 1930 Switch Series",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Firmware below v1.0.7.0"
      }
    ]
  }
]

References

support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbnw04270en_us

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

35.0%

JSON

Related for CVE-2021-41005