Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2022-23679

🗓️ 06 Sep 2022 17:18:52Reported by hpeType 
cve
 cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 58 Views

AOS-CX lacks Anti-CSRF protections, allowing for unauthorized command execution

Related
Detection
Affected
Refs
Social
ReporterTitlePublishedViews
Family
ATTACKERKB		CVE-2022-23679
6 Sep 202218:15
attackerkb
CNNVD		Aruba AOS-CX 跨站请求伪造漏洞
30 Aug 202200:00
cnnvd
Cvelist		CVE-2022-23679
6 Sep 202217:18
cvelist
EUVD		EUVD-2022-28618
3 Oct 202520:07
euvd
NCSC		Vulnerabilities fixed in Aruba AOS-CX switches
31 Aug 202200:00
ncsc
NVD		CVE-2022-23679
6 Sep 202218:15
nvd
OSV		CVE-2022-23679
6 Sep 202218:15
osv
Prion		Cross site request forgery (csrf)
6 Sep 202218:15
prion
Positive Technologies		PT-2022-16188 · Aruba · Arubaos-Cx Switches
6 Sep 202200:00
ptsecurity
RedhatCVE		CVE-2022-23679
9 Jan 202610:54
redhatcve
Rows per page
NVD
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_10000Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_8325Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_8320Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_9300Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_8360Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_6400Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_6300Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_6200fMatch-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_6100Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_6000Match-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_4100iMatch-
Node
arubanetworksaos-cxRange10.06.000010.06.0210
OR
arubanetworksaos-cxRange10.08.000010.08.1070
OR
arubanetworksaos-cxRange10.09.000010.09.1030
OR
arubanetworksaos-cxRange10.10.000010.10.1000
AND
arubanetworkscx_8400Match-
[
  {
    "product": "Aruba CX 6200F Switch Series; Aruba 6300 Switch Series; Aruba 6400 Switch Series; Aruba 8325 Switch Series; Aruba 8400 Switch Series; Aruba CX 8360 Switch Series; ArubaOS-CX Switches;",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "AOS-CX 10.10.xxxx: 10.10.0002 and below, AOS-CX 10.09.xxxx: 10.09.1020 and below, AOS-CX 10.08.xxxx: 10.08.1060 and below, AOS-CX 10.06.xxxx: 10.06.0200 and below."
      }
    ]
  }
]

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 06:49Current
8.8High risk
Vulners AI Score8.8
CVSS 3.18.8
EPSS0.00141
CWE-352
cve-2022-23679aos-cxanti-csrf protectionscommand executionsecurity vulnerabilityarubaos-cx switchesnvd
58