{"containers": {"cna": {"affected": [{"product": "ArubaOS-Switch Devices", "vendor": "n/a", "versions": [{"status": "affected", "version": "ArubaOS-Switch 15.xx.xxxx: All versions"}, {"status": "affected", "version": "ArubaOS-Switch 16.01.xxxx: All versions"}, {"status": "affected", "version": "ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below"}, {"status": "affected", "version": "ArubaOS-Switch 16.03.xxxx: All versions"}, {"status": "affected", "version": "ArubaOS-Switch 16.04.xxxx: All versions"}, {"status": "affected", "version": "ArubaOS-Switch 16.05.xxxx: All versions"}, {"status": "affected", "version": "ArubaOS-Switch 16.06.xxxx: All versions"}, {"status": "affected", "version": "ArubaOS-Switch 16.07.xxxx: All versions"}, {"status": "affected", "version": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below"}, {"status": "affected", "version": "ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below"}, {"status": "affected", "version": "ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below"}, {"status": "affected", "version": "ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below."}]}], "descriptions": [{"lang": "en", "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."}], "problemTypes": [{"descriptions": [{"description": "remote execution of arbitrary code", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2022-05-10T18:15:28", "orgId": "eb103674-0d28-4225-80f8-39fb86215de0", "shortName": "hpe"}, "references": [{"tags": ["x_refsource_MISC"], "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security-alert@hpe.com", "ID": "CVE-2022-23677", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "ArubaOS-Switch Devices", "version": {"version_data": [{"version_value": "ArubaOS-Switch 15.xx.xxxx: All versions"}, {"version_value": "ArubaOS-Switch 16.01.xxxx: All versions"}, {"version_value": "ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below"}, {"version_value": "ArubaOS-Switch 16.03.xxxx: All versions"}, {"version_value": "ArubaOS-Switch 16.04.xxxx: All versions"}, {"version_value": "ArubaOS-Switch 16.05.xxxx: All versions"}, {"version_value": "ArubaOS-Switch 16.06.xxxx: All versions"}, {"version_value": "ArubaOS-Switch 16.07.xxxx: All versions"}, {"version_value": "ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below"}, {"version_value": "ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below"}, {"version_value": "ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below"}, {"version_value": "ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below."}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "remote execution of arbitrary code"}]}]}, "references": {"reference_data": [{"name": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt", "refsource": "MISC", "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-03T03:51:44.688Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"}]}]}, "cveMetadata": {"assignerOrgId": "eb103674-0d28-4225-80f8-39fb86215de0", "assignerShortName": "hpe", "cveId": "CVE-2022-23677", "datePublished": "2022-05-10T18:15:28", "dateReserved": "2022-01-19T00:00:00", "dateUpdated": "2024-08-03T03:51:44.688Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B93568F8-DC8C-4345-8DE1-1CD78A033B77", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "359AC555-5349-4F4F-A867-A3EE40E72779", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "147EE3CC-3147-46DC-A7F3-B86EFF7B9DD6", "versionEndExcluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "254F604A-8BD7-4488-B7DD-40239D90000A", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "C2043973-4752-4EE3-991F-2A22393D4BDE", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6D126AFA-087F-4255-8A4E-02ABFD42AAC6", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5406r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B33BEAC6-7BAD-4022-B127-2A2547F96901", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:5406r:-:*:*:*:*:*:*:*", "matchCriteriaId": "837AB9B6-EF2C-4EE9-8DBA-621183594F5A", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9AC628A5-CB98-4A4F-AE6B-12D977D69291", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "72C955FB-DA01-46C0-A503-B04DB9E7BAAD", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2E3D389B-025B-4D2F-AEE2-682A306D8590", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BCF8476F-9CC3-4B4B-B617-12FDAACE1DFE", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CAF85FEE-21E3-42EC-9C3E-81E907AEBBC8", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DE61EAD2-A7D5-4882-9154-B41946125D7D", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8F5BE378-7235-4248-965C-2496E548CA52", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2920:-:*:*:*:*:*:*:*", "matchCriteriaId": "49A558E1-58CF-44DE-91D6-CCD2ABE05542", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0C99814A-A444-4F3B-B617-8B49D2B347A1", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "679DFE4F-BAE4-4034-A0AF-21DDB53849BB", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6CC5142C-3C94-4A13-9B6A-A3590AF1081C", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "889575E9-4729-4E97-986A-2564C110A766", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A2BF0015-99BD-4679-8F3E-8C80B7041822", "versionEndIncluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5D8A7488-85E6-452D-8157-19591891D703", "versionEndIncluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930f_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "781BFC5E-08FF-4FA3-878F-76651AC67173", "versionEndIncluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2930f:-:*:*:*:*:*:*:*", "matchCriteriaId": "1B3A860A-5810-43C0-834A-3F701286B719", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1D5EC3B3-208D-4C3D-9844-DEE60AA32BE0", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "833907D5-5B5C-4D78-9AF1-ECE7B2D2ED15", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "CAACB027-320E-461D-B35A-CBE90A019025", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "897D100F-C4C5-4C4D-AEC6-9E120594B1CE", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "6F0408D0-EC1B-471C-B593-A9CA28431B05", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "607DF725-C73B-4EB0-9F79-8E246341C671", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2930m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B5F5BFA6-E454-4DCB-B3EE-629A65824F33", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2930m:-:*:*:*:*:*:*:*", "matchCriteriaId": "B0859BFB-4CEE-414C-BBA5-AC8C47508DD7", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "BF08F6C1-FBA9-4B16-86F9-3DBE85EE616F", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "68B3E4D9-7FBF-44D3-B956-C469D3D8C8F3", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AF19378D-47FE-4148-9A22-DB64000A56F3", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "289F77CA-B5DE-466F-806C-30E49194E8F4", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "212CCB00-AFAE-493D-9BC5-4CDEFFB48BB2", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7F4F1B66-FDD5-4B1D-A9CC-EF0BC60E7FFF", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "675367A1-89BC-4898-A7D4-44388AE38857", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2530:-:*:*:*:*:*:*:*", "matchCriteriaId": "45857DA6-3886-4095-B89C-2D7EDBA73843", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "E40AC855-0986-478F-BC79-AB6A0861FBAA", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9AA5D364-51FE-41E9-A17A-921CE145B9D7", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F295F47D-5D8B-43C2-BACB-B169B5AC0575", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3883E16E-61E5-4F38-9C1D-B9808611A27D", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4943EC34-3AB3-46B8-9C49-37535FC841FF", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4DD0B3EA-212C-4793-90AD-30262735EE89", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2540_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A0AE2173-FB26-4C2C-8C98-EDC7652B639F", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2540:-:*:*:*:*:*:*:*", "matchCriteriaId": "9DFFC632-14E9-49DC-AC70-915549150CAF", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "AFA6759C-F320-4527-AB92-DB32CCC99B06", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A0E53480-353B-492C-BBDE-2C0A7033C76A", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4EA4F624-7AC2-4A47-8B4C-CB2CC47D4DFA", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "D60C474F-19FF-4CA9-88B5-D1598AF656E4", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B6398019-D01F-4D8A-9099-1A943F118F05", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DD272BB2-DEB3-4489-B5B2-924E4213EB60", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:5412r_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "40061DCB-2FD8-48A7-B294-F257C330720C", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:5412r:-:*:*:*:*:*:*:*", "matchCriteriaId": "689BE936-E585-4665-8B7E-C313AA2AB2AE", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "942D15B1-81AD-47B3-9AB2-3191FC6EAF60", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9A6946CD-771A-41B9-8CBB-E7ADB4E73F7E", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "528AA06F-4380-449E-8745-49B5F8787EA4", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2ACB5412-1E27-4297-BCCE-FDC28E63022F", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "A883186F-A5C2-4094-BBF3-83E21AE7ED10", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "517CB6EA-1277-4895-B7E3-A7C1E9A3195B", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2615_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "07886BB9-68BC-4DBE-B997-7BE8504A34C7", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2615:-:*:*:*:*:*:*:*", "matchCriteriaId": "90DD7F7A-86B9-45FA-B672-4DEFABE45E85", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "9B9FF083-8CEF-42FF-9C86-7DE79DE142A3", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "F663B858-2263-4151-84E2-2A126AF9B979", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "30814AB5-D25F-4787-8A88-C46BD06B8804", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "B52BE87A-4CCF-4373-9397-7E79F6BAF8E8", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "2ED2B48D-5E21-4FF5-9B3D-6D3A80EFC169", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "5E11B4E4-A024-4B98-BF75-50250374D08F", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2620_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "77C9BB4A-C325-45E9-869C-B744DD91EF01", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2620:-:*:*:*:*:*:*:*", "matchCriteriaId": "3CBBA246-5A52-4822-A9EB-BDC83B377EA3", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "8049B6D7-CD62-467B-AA75-832FDC883D2B", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "69302F97-5311-4847-9E2B-4D8CFC2A2496", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DFCAE1F2-483A-480D-AD05-8C9E9DF2B4CC", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "36C28462-97BE-4301-AB9D-767A41ECF732", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "31CB91C7-BDB7-4516-824D-33031130D644", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "1FBF5B4A-4808-40AC-BE3E-556059A46DB6", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:2915_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "58E3E4B6-BFA8-4949-A38A-54B0AA68CE03", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:2915:-:*:*:*:*:*:*:*", "matchCriteriaId": "2F740778-4ED3-4C04-8972-8AA35609FE66", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "4431D052-B211-4D66-AA0D-89F4658CBD2C", "versionEndIncluding": "15.16.0023", "versionStartIncluding": "15.00.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "0D3E9155-B665-46B3-8E0E-1FE3B3AE074C", "versionEndExcluding": "16.02.0034", "versionStartIncluding": "16.01.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "7B44F763-9BE5-4212-8361-978E16FB306D", "versionEndIncluding": "16.04.0024", "versionStartIncluding": "16.03.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DDB53B9C-CCD2-4A06-A79C-BF333EB3BB00", "versionEndExcluding": "16.08.0025", "versionStartIncluding": "16.05.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "FCE5E234-D0B9-44D8-8565-56372E882E19", "versionEndExcluding": "16.09.0020", "versionStartIncluding": "16.09.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "3FE38A01-532C-40E0-9FE8-E4C4E24BD53F", "versionEndExcluding": "16.10.0020", "versionStartIncluding": "16.10.0", "vulnerable": true}, {"criteria": "cpe:2.3:o:arubanetworks:3810m_firmware:*:*:*:*:*:*:*:*", "matchCriteriaId": "DB16E4B3-4F3D-442E-9809-4354AB91CC02", "versionEndExcluding": "16.11.0004", "versionStartIncluding": "16.11.0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:arubanetworks:3810m:-:*:*:*:*:*:*:*", "matchCriteriaId": "039E7DAB-A6BC-4382-9D6F-33BDA9DD560D", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "descriptions": [{"lang": "en", "value": "A remote execution of arbitrary code vulnerability was discovered in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Switch 16.04.xxxx: All versions; ArubaOS-Switch 16.05.xxxx: All versions; ArubaOS-Switch 16.06.xxxx: All versions; ArubaOS-Switch 16.07.xxxx: All versions; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 and below; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 and below; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 and below; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 and below. Aruba has released upgrades for ArubaOS-Switch Devices that address these security vulnerabilities."}, {"lang": "es", "value": "Se ha detectado Una vulnerabilidad de Ejecuci\u00f3n de C\u00f3digo Remota arbitrario en las versiones de ArubaOS-Switch Devices: ArubaOS-Switch 15.xx.xxxx: Todas las versiones; ArubaOS-Switch 16.01.xxxx: Todas las versiones; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 e inferiores; ArubaOS-Switch 16.03.xxxx: Todas las versiones; ArubaOS-Switch 16.04.xxxx: Todas las versiones; ArubaOS-Switch 16.05.xxxx: Todas las versiones; ArubaOS-Switch 16.06.xxxx: Todas las versiones; ArubaOS-Switch 16.07.xxxx: Todas las versiones; ArubaOS-Switch 16.08.xxxx: KB/WB/WC/YA/YB/YC.16.08.0024 y anteriores; ArubaOS-Switch 16.09.xxxx: KB/WB/WC/YA/YB/YC.16.09.0019 y anteriores; ArubaOS-Switch 16.10.xxxx: KB/WB/WC/YA/YB/YC.16.10.0019 y anteriores; ArubaOS-Switch 16.11.xxxx: KB/WB/WC/YA/YB/YC.16.11.0003 y anteriores. Aruba ha publicado actualizaciones para ArubaOS-Switch Devices que abordan estas vulnerabilidades de seguridad"}], "id": "CVE-2022-23677", "lastModified": "2024-11-21T06:49:04.657", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.1, "baseSeverity": "HIGH", "confidentialityImpact": "HIGH", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 5.9, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2022-05-10T19:15:09.220", "references": [{"source": "security-alert@hpe.com", "tags": ["Vendor Advisory"], "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-008.txt"}], "sourceIdentifier": "security-alert@hpe.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-787"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}