CVE-2022-23677

🗓️ 10 May 2022 18:15:28Reported by hpeType

Remote execution vulnerability in ArubaOS-Switc

Reporter	Title	Published	Views	Family All 12
ATTACKERKB	CVE-2022-23677	10 May 202219:15	–	attackerkb
Circl	CVE-2022-23677	4 May 202220:16	–	circl
CNNVD	Avaya switches 缓冲区错误漏洞	3 May 202200:00	–	cnnvd
Check Point Advisories	Aruba ArubaOS Heap Overflow (CVE-2022-23677)	15 Jun 202200:00	–	checkpoint_advisories
CVE	CVE-2022-23677	10 May 202218:15	–	cve
EUVD	EUVD-2022-28616	3 Oct 202520:07	–	euvd
NCSC	Vulnerabilities fixed in switches from Avaya and Aruba Networks	3 May 202200:00	–	ncsc
NVD	CVE-2022-23677	10 May 202219:15	–	nvd
OSV	CVE-2022-23677	10 May 202219:15	–	osv
Prion	Code injection	10 May 202219:15	–	prion

[
  {
    "product": "ArubaOS-Switch Devices",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "ArubaOS-Switch 15.xx.xxxx: All versions"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.01.xxxx: All versions"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.03.xxxx: All versions"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.04.xxxx: All versions"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.05.xxxx: All versions"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.06.xxxx: All versions"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.07.xxxx: All versions"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below"
      },
      {
        "status": "affected",
        "version": "ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below."
      }
    ]
  }
]

Source	Link
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt

10 May 2022 18:15Current

8.7High risk

Vulners AI Score8.7

EPSS0.19072