CVE-2023-1168 Authenticated Remote Code Execution in Aruba CX Switches

🗓️ 21 Mar 2023 20:22:09Reported by hpeType

Aruba CX Switches remote code execution vulnerability

Reporter	Title	Published	Views	Family All 8
CNNVD	Aruba Networks AOS-CX Network Analytics Engine 安全漏洞	22 Mar 202300:00	–	cnnvd
CVE	CVE-2023-1168	21 Mar 202320:22	–	cve
EUVD	EUVD-2023-23450	3 Oct 202520:07	–	euvd
NVD	CVE-2023-1168	22 Mar 202306:15	–	nvd
Prion	Remote code execution	22 Mar 202306:15	–	prion
Positive Technologies	PT-2023-16796 · Aruba · Aos-Cx Network Analytics Engine	21 Mar 202300:00	–	ptsecurity
RedhatCVE	CVE-2023-1168	23 May 202505:04	–	redhatcve
Vulnrichment	CVE-2023-1168 Authenticated Remote Code Execution in Aruba CX Switches	21 Mar 202320:22	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "platforms": [
      "AOS-CX"
    ],
    "product": "Aruba CX 10000 Switch Series, Aruba CX 9300 Switch Series, Aruba CX 8400 Switch Series, Aruba CX 8360 Switch Series, Aruba CX 8325 Switch Series, Aruba CX 8320 Switch Series, Aruba CX 6400 Switch Series, Aruba CX 6300 Switch Series, Aruba CX 6200F Switch Series",
    "vendor": "Hewlett Packard Enterprise (HPE)",
    "versions": [
      {
        "status": "affected",
        "version": "AOS-CX 10.10.xxxx: 10.10.1020 and below."
      },
      {
        "status": "affected",
        "version": "AOS-CX 10.09.xxxx: 10.09.1020 and below."
      },
      {
        "status": "affected",
        "version": "AOS-CX 10.08.xxxx: 10.08.1070 and below."
      },
      {
        "status": "affected",
        "version": "AOS-CX 10.06.xxxx: 10.06.0230 and below."
      }
    ]
  }
]

Source	Link
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-004.txt

22 Mar 2023 04:38Current

9High risk

Vulners AI Score9

CVSS 3.17.2

EPSS0.01089