CVSS3
Attack Vector
ADJACENT
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS
Percentile
19.8%
Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. Successful exploitation of these vulnerabilities may allow an attacker to impact the availability of the AOS-CX LLDP service and/or the management plane of the switch in ArubaOS-CX Switches version(s): AOS-CX 10.09.xxxx: 10.09.1010 and below, AOS-CX 10.08.xxxx: 10.08.1050 and below, AOS-CX 10.06.xxxx: 10.06.0190 and below. Aruba has released upgrades for ArubaOS-CX Switch Devices that address these security vulnerabilities.
Vendor | Product | Version | CPE |
---|---|---|---|
arubanetworks | aos-cx | * | cpe:2.3:o:arubanetworks:aos-cx:*:*:*:*:*:*:*:* |
arubanetworks | cx_10000 | - | cpe:2.3:h:arubanetworks:cx_10000:-:*:*:*:*:*:*:* |
arubanetworks | cx_8325 | - | cpe:2.3:h:arubanetworks:cx_8325:-:*:*:*:*:*:*:* |
arubanetworks | cx_8320 | - | cpe:2.3:h:arubanetworks:cx_8320:-:*:*:*:*:*:*:* |
arubanetworks | cx_9300 | - | cpe:2.3:h:arubanetworks:cx_9300:-:*:*:*:*:*:*:* |
arubanetworks | cx_8360 | - | cpe:2.3:h:arubanetworks:cx_8360:-:*:*:*:*:*:*:* |
arubanetworks | cx_6400 | - | cpe:2.3:h:arubanetworks:cx_6400:-:*:*:*:*:*:*:* |
arubanetworks | cx_6300 | - | cpe:2.3:h:arubanetworks:cx_6300:-:*:*:*:*:*:*:* |
arubanetworks | cx_6200f | - | cpe:2.3:h:arubanetworks:cx_6200f:-:*:*:*:*:*:*:* |
arubanetworks | cx_6100 | - | cpe:2.3:h:arubanetworks:cx_6100:-:*:*:*:*:*:*:* |