SB2022090141 - Multiple vulnerabilities in Aruba AOS-CX switches

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2022090141

SB2022090141 - Multiple vulnerabilities in Aruba AOS-CX switches

Published: September 1, 2022

Security Bulletin ID SB2022090141
Severity
Medium
Patch available
YES
Number of vulnerabilities 12
Exploitation vector Remote access
Highest impact Code execution

Breakdown by Severity

Medium 58% Low 42%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 12 secuirty vulnerabilities.


1) Cross-site request forgery (CVE-ID: CVE-2022-23679)

The vulnerability allows a remote attacker to perform cross-site request forgery attacks.

The vulnerability exists due to insufficient validation of the HTTP request origin. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website and execute commands on the affected device.


2) Cross-site request forgery (CVE-ID: CVE-2022-23680)

The vulnerability allows a remote attacker to perform cross-site request forgery attacks.

The vulnerability exists due to insufficient validation of the HTTP request origin. A remote attacker can trick the victim to visit a specially crafted web page and perform arbitrary actions on behalf of the victim on the vulnerable website and execute commands on the affected device.


3) OS Command Injection (CVE-ID: CVE-2022-23681)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation within the command line interface. A local user can execute arbitrary OS commands with root privileges.


4) OS Command Injection (CVE-ID: CVE-2022-23682)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation within the command line interface. A local user can execute arbitrary OS commands with root privileges.


5) OS Command Injection (CVE-ID: CVE-2022-23683)

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to improper input validation within the AOS-CX Network Analytics Engine. A local user can run a specially crafted NAE script to execute arbitrary code with elevated privileges.


6) Permissions, Privileges, and Access Controls (CVE-ID: CVE-2022-23684)

The vulnerability allows a remote user to escalate privileges on the system.

The vulnerability exists due to application does not properly impose security restrictions within the the Web-Management Interface. A remote low-privileged user can bypass implemented security restrictions and elevate privileges on the device.


7) Input validation error (CVE-ID: CVE-2022-23686)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when processing packets in LLDP service. A remote attacker can send specially crafted packets to the affected service and perform a denial of service (DoS) attack.


8) Input validation error (CVE-ID: CVE-2022-23687)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when processing packets in LLDP service. A remote attacker can send specially crafted packets to the affected service and perform a denial of service (DoS) attack.


9) Input validation error (CVE-ID: CVE-2022-23688)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when processing packets in LLDP service. A remote attacker can send specially crafted packets to the affected service and perform a denial of service (DoS) attack.


10) Input validation error (CVE-ID: CVE-2022-23689)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of user-supplied input when processing packets in LLDP service. A remote attacker can send specially crafted packets to the affected service and perform a denial of service (DoS) attack.


11) Information disclosure (CVE-ID: CVE-2022-23690)

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output by the web interface. A remote attacker can fingerprint the exact version of the installed firmware.


12) Improper Authentication (CVE-ID: CVE-2022-23691)

The vulnerability allows an attacker to bypass authentication process.

The vulnerability exists due to an error, which allows an attacker with physical access to recovery console to bypass authentication process and gain unauthorized access to the device.


Remediation

Install update from vendor's website.

References