Lucene search

K

PRIOn knowledge basePRION:CVE-2022-37908

HistoryDec 12, 2022 - 1:15 p.m.

Design/Logic Flaw

2022-12-1213:15:00

PRIOn knowledge base

www.prio-n.com

7

arubaos

bootloader integrity

7xxx series controllers

hardware chain of trust

authenticated attacker

logic flaw

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.9%

An authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series controllers. Successful exploitation can compromise the hardware chain of trust on the impacted controller.

CPENameOperatorVersion
arubaosge6.5.4.0
arubaoslt6.5.4.22
arubaosge8.4.0.0
arubaoslt8.6.0.17
arubaosge8.7.0.0
arubaoslt8.7.1.9
arubaosge8.8.0.0
arubaoslt10.3.0.1
sd-waneq>= 8.7.0.02.3.0.0 AND < 8.7.0.02.3.0.6

References

www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-016.txt

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

22.9%

Related for PRION:CVE-2022-37908

cve1 cvelist1 nvd1