CVE-2021-25150

🗓️ 30 Mar 2021 00:11:24Reported by hpeType

Remote execution vulnerability in Aruba Instant Access Poin

Reporter	Title	Published	Views	Family All 12
BDU FSTEC	The vulnerability of the command-line interface of Siemens SCALANCE industrial switches allows a hacker to execute arbitrary commands.	10 Apr 202300:00	–	bdu_fstec
CNNVD	Aruba Access Points 命令注入漏洞	29 Mar 202100:00	–	cnnvd
CNVD	Aruba Instant Command Injection Vulnerability (CNVD-2021-26047)	30 Mar 202100:00	–	cnvd
CVE	CVE-2021-25150	30 Mar 202100:11	–	cve
EUVD	EUVD-2021-12061	7 Oct 202500:30	–	euvd
ICS	Siemens SCALANCE W1750D (Update B)	11 May 202100:00	–	ics
NCSC	Vulnerabilities fixed in Siemens SCALANCE W1750D (Aruba Instant Access Points)	11 May 202100:00	–	ncsc
NCSC	Vulnerabilities fixed in Siemens Scalance products	10 Aug 202100:00	–	ncsc
NVD	CVE-2021-25150	30 Mar 202101:15	–	nvd
Prion	Design/Logic Flaw	30 Mar 202101:15	–	prion

[
  {
    "product": "Aruba Instant Access Points",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Aruba Instant 6.5.x: 6.5.4.17 and below"
      },
      {
        "status": "affected",
        "version": "Aruba Instant 8.3.x: 8.3.0.13 and below"
      },
      {
        "status": "affected",
        "version": "Aruba Instant 8.5.x: 8.5.0.10 and below"
      },
      {
        "status": "affected",
        "version": "Aruba Instant 8.6.x: 8.6.0.4 and below"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-723417.pdf
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-007.txt

11 May 2021 12:06Current

9.2High risk

Vulners AI Score9.2

EPSS0.0282