CVE-2020-36907

Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable. Attackers can send a crafted HTTP request to the action.php5 script with specific parameters to trigger a 5-minute service disruption...

CVE-2020-36907

Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable. Attackers can send a crafted HTTP request to the action.php5 script with specific parameters to trigger a 5-minute service disruption...

CVE-2020-36907 Extreme Networks Aerohive HiveOS <=11.x 11.x Unauthenticated Remote Denial of Service

Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable. Attackers can send a crafted HTTP request to the action.php5 script with specific parameters to trigger a 5-minute service disruption...

CVE-2020-36907 Extreme Networks Aerohive HiveOS <=11.x 11.x Unauthenticated Remote Denial of Service

Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable. Attackers can send a crafted HTTP request to the action.php5 script with specific parameters to trigger a 5-minute service disruption...

CVE-2020-36907

CVE-2020-36907 affects Aerohive HiveOS NetConfig UI. An unauthenticated attacker can trigger a denial-of-service by sending crafted parameters to action.php5, causing a 5-minute web interface disruption. The CVE is described with network-based access, low attack complexity, and no privileges requ...

Extreme Aerohive HiveOS 安全漏洞

Extreme Aerohive HiveOS is a specialized operating system from Extreme, Inc. A security vulnerability exists in Extreme Aerohive HiveOS, which stems from a denial of service vulnerability in NetConfig UI that could make the web interface unavailable...

PT-2026-1442

Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable. Attackers can send a crafted HTTP request to the action.php5 script with specific parameters to trigger a 5-minute service disruption...

CVE-2020-16152

The NetConfig UI administrative interface in Extreme Networks ExtremeWireless Aerohive HiveOS and IQ Engine through 10.0r8a allows attackers to execute PHP code as the root user via remote HTTP requests that insert this code into a log file and then traverse to that file...

Extreme Networks Aerohive HiveOS 11.0 - Remote Denial of Service (PoC)

Exploit title : Extreme Networks Aerohive HiveOS 11.0 - Remote Denial of Service PoC Exploit Author : LiquidWorm Date : 2020-05-06 Vendor: Extreme Networks Product web page: https://www.extremenetworks.com Datasheet: https://www.aerohive.com/wp-content/uploads/AerohiveDatasheetHiveOS.pdf Affected...

Extreme Networks Aerohive HiveOS 11.x Denial Of Service Exploit

Extreme Networks Aerohive HiveOS versions 11.x and below remote denial of service exploit. An unauthenticated malicious user can trigger a denial of service DoS attack when sending specific application layer packets towards the Aerohive NetConfig UI. This proof of concept exploit renders the...

Extreme Networks Aerohive HiveOS <=11.x Remote Denial of Service Exploit

Summary Aerohive HiveOS is the network operating system that powers all Aerohive access points, based on a feature-rich Cooperative Control architecture. HiveOS enables Aerohive devices to organize into groups, or 'hives', which allows functionality like fast roaming, user-based access control an...

Multiple Vulnerabilities in Aerohive HiveOS

Aerohive HiveOS is a set of operating systems for use in wireless access points and routers from Aerohive. Aerohive HiveOS suffers from local file inclusion and remote command execution vulnerabilities that could be exploited by an attacker to obtain sensitive information or execute arbitrary...

Aerohive HiveOS 5.1r5 &lt; 6.1r5 - Multiple Vulnerabilities

Exploit Title: Aerohive HiveOS XSS and limited LFI Date: 11-07-2014 Exploit Author: Rik van Duijn - DearBytes dearbytes.com Vendor Homepage: http://www.aerohive.com/products/overview.html Version: 5.1r5 - 6.1r5 possibly earlier versions Description ================ Aerohive version 5.1r5 through...