CVE-2023-35979

CVSS 3.1 Score 7.5 of 10 (high)

Details

Published Jul 5, 2023
Updated: Jul 11, 2023
CWE ID 120

Summary

CVE-2023-35979 is a newly identified buffer overflow vulnerability that affects the ArubaOS web-based management interface. This unauthenticated issue resides in the process controlling the interface and can be exploited remotely. Successful exploitation leads to a Denial-of-Service (DoS) condition on the web-based management interface of the controller, causing it to become unavailable for legitimate use. This vulnerability poses a significant risk, especially in environments where the ArubaOS web-based management interface is exposed to the internet. Administrators are urged to apply the necessary patches to mitigate this risk and prevent potential DoS attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Affected Products

  • Arubanetworks Arubaos

Affected Vendors

  • Aruba Networks