Lucene search

[email protected]NVD:CVE-2023-22787

HistoryMay 08, 2023 - 3:15 p.m.

CVE-2023-22787

2023-05-0815:15:10

[email protected]

web.nvd.nist.gov

unauthenticated

dos

papi

aruba

instantos

arubaos 10

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

33.4%

JSON

An unauthenticated Denial of Service (DoS) vulnerability exists in a service accessed via the PAPI protocol provided by Aruba InstantOS and ArubaOS 10. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected access point.

Affected configurations

Nvd

Node

arubanetworksarubaosRange10.3.0.0–10.3.1.0

hpinstantosRange6.4.0.0–6.4.4.8-4.2.4.20

hpinstantosRange6.5.0.0–6.5.4.23

hpinstantosRange8.4.0.0–8.6.0.0

hpinstantosRange8.6.0.0–8.6.0.19

hpinstantosRange8.7.0.0–8.9.0.0

hpinstantosRange8.10.0.0–8.10.0.4

VendorProductVersionCPE
arubanetworksarubaos*cpe:2.3:o:arubanetworks:arubaos:*:*:*:*:*:*:*:*
hpinstantos*cpe:2.3:o:hp:instantos:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
arubanetworks	arubaos	*	cpe:2.3:o:arubanetworks:arubaos::::::::
hp	instantos	*	cpe:2.3:o:hp:instantos::::::::

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-006.txt

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.6

Confidence

High

EPSS

0.001

Percentile

33.4%

JSON

Related for NVD:CVE-2023-22787

cvelist1 cve1 prion1 nessus2 ics1