Lucene search

[email protected]CVE-2023-22787

HistoryMay 08, 2023 - 3:15 p.m.

CVE-2023-22787

2023-05-0815:15:10

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cve-2023-22787

unauthenticated

dos

vulnerability

aruba

instantos

arubaos 10

papi protocol

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.9 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

14.7%

JSON

An unauthenticated Denial of Service (DoS) vulnerability exists in a service accessed via the PAPI protocol provided by Aruba InstantOS and ArubaOS 10. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected access point.

CPENameOperatorVersion
arubanetworks:arubaosarubanetworks arubaosle10.3.1.0
arubanetworks:arubaosarubanetworks arubaoseq10.3.0.0
arubanetworks:arubaosarubanetworks arubaoseq10.3.1.0
hp:instantoshp instantosle6.4.4.8-4.2.4.20
hp:instantoshp instantoseq6.4.0.0
hp:instantoshp instantosle6.5.4.23
hp:instantoshp instantoseq6.5.0.0
hp:instantoshp instantoslt8.6.0.0
hp:instantoshp instantoseq8.5.0.12
hp:instantoshp instantoseq8.5.0.1

CPE	Name	Operator	Version
arubanetworks:arubaos	arubanetworks arubaos	le	10.3.1.0
arubanetworks:arubaos	arubanetworks arubaos	eq	10.3.0.0
arubanetworks:arubaos	arubanetworks arubaos	eq	10.3.1.0
hp:instantos	hp instantos	le	6.4.4.8-4.2.4.20
hp:instantos	hp instantos	eq	6.4.0.0
hp:instantos	hp instantos	le	6.5.4.23
hp:instantos	hp instantos	eq	6.5.0.0
hp:instantos	hp instantos	lt	8.6.0.0
hp:instantos	hp instantos	eq	8.5.0.12
hp:instantos	hp instantos	eq	8.5.0.1

Rows per page:

1-10 of 761

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-006.txt

Social References

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.9 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.0004 Low

EPSS

Percentile

14.7%

JSON

Related for CVE-2023-22787

cvelist1 prion1 nessus2 ics1