Design/Logic Flaw

2022-12-1213:15:00

PRIOn knowledge base

www.prio-n.com

arubaos

bootloader

7xxx controllers

denial of service

vulnerability

0.001 Low

EPSS

Percentile

38.6%

JSON

A vulnerability exists in the ArubaOS bootloader on 7xxx series controllers which can result in a denial of service (DoS) condition on an impacted system. A successful attacker can cause a system hang which can only be resolved via a power cycle of the impacted controller.

CPENameOperatorVersion
arubaosge6.5.4.0
arubaoslt6.5.4.22
arubaosge8.4.0.0
arubaoslt8.6.0.17
arubaosge8.7.0.0
arubaoslt8.7.1.9
arubaosge8.8.0.0
arubaoslt10.3.0.1
sd-waneq>= 8.7.0.02.3.0.0 AND < 8.7.0.02.3.0.6

Name	Operator	Version
arubaos	ge	6.5.4.0
arubaos	lt	6.5.4.22
arubaos	ge	8.4.0.0
arubaos	lt	8.6.0.17
arubaos	ge	8.7.0.0
arubaos	lt	8.7.1.9
arubaos	ge	8.8.0.0
arubaos	lt	10.3.0.1
sd-wan	eq	>= 8.7.0.02.3.0.0 AND < 8.7.0.02.3.0.6

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-016.txt

0.001 Low

EPSS

Percentile

38.6%

JSON

Related for PRION:CVE-2022-37907