Main
Vulnerability Database
Exploits
ID:7076 - Exploit for Improper access control in Aruba Instant - CVE-2021-25155
ID:7076 - Exploit for Improper access control in Aruba Instant - CVE-2021-25155
Published: November 25, 2021
Vulnerability identifier: #VU53257
Vulnerability risk: Low
CVE-ID: CVE-2021-25155
CWE-ID: CWE-284
Exploitation vector: Remote access
Vulnerable software:
Aruba Instant
Aruba Instant
Link to public exploit:
Vulnerability description
The vulnerability allows a remote user to gain unauthorized access to otherwise restricted functionality.
The vulnerability exists due to improper access restrictions in the Web UI. A remote administrator can overwrite the sensitive system files.
Remediation
Install updates from vendor's website.