← voltar
CVE-2022-37908

CVE-2022-37908

CVSS 5.8 MEDIUMEPSS 0.2%CWE-494
An authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series controllers. Successful exploitation can compromise the hardware chain of trust on the impacted controller.
CVSS:3.1/AV:N/AC:H/PR:H/UI:N/S:C/C:N/I:H/A:N
Produtos afetados
Hewlett Packard Enterprise · Aruba Mobility Conductor (formerly Mobility Master); Aruba Mobility Controllers; WLAN Gateways and SD-WAN Gateways managed by Aruba Central

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-016.txt