Lucene search
HpeCVELIST:CVE-2018-7080HistoryDec 07, 2018 - 9:00 p.m.
CVE-2018-7080
2018-12-0721:00:00
hpe
www.cve.org
A vulnerability exists in the firmware of embedded BLE radios that are part of some Aruba Access points. An attacker who is able to exploit the vulnerability could install new, potentially malicious firmware into the AP’s BLE radio and could then gain access to the AP’s console port. This vulnerability is applicable only if the BLE radio has been enabled in affected access points. The BLE radio is disabled by default. Note - Aruba products are NOT affected by a similar vulnerability being tracked as CVE-2018-16986.
CNA Affected
[
{
"product": "Aruba Access Points",
"vendor": "Hewlett Packard Enterprise",
"versions": [
{
"status": "affected",
"version": "AP-3xx and IAP-3xx series access points, AP-203R, AP-203RP, ArubaOS 6.4.4.x prior to 6.4.4.20, ArubaOS 6.5.3.x prior to 6.5.3.9, ArubaOS 6.5.4.x prior to 6.5.4.9, ArubaOS 8.x prior to 8.2.2.2, ArubaOS 8.3.x prior to 8.3.0.4"
}
]
}
]Related
threatpost
threatpost
RSA Conference 2019: BleedingBit Flaws Continue to Plague Firms
2019-03-06 21:30:48
Two Zero-Day Bugs Open Millions of Wireless Access Points to Attack
2018-11-01 15:20:08
prion
prion
Design/Logic Flaw
2018-12-07 21:29:00
Buffer overflow
2018-11-06 15:29:00
thn
thn
Two New Bluetooth Chip Flaws Expose Millions of Devices to Remote Attacks
2018-11-01 18:27:00
cve
cve
CVE-2018-7080
2018-12-07 21:29:01
CVE-2018-16986
2018-11-06 16:00:00
nvd
nvd
CVE-2018-7080
2018-12-07 21:29:01
CVE-2018-16986
2018-11-06 15:29:00
cert
cert
cisco
cisco
fortinet
fortinet
FortiAP Bleeding Bit Vulnerability
2019-04-10 00:00:00
cvelist
cvelist
CVE-2018-16986
2018-11-06 16:00:00