Описание
Unspecified vulnerability in the LDAP authentication feature in Aruba Mobility Controller 2.3.6.15, 2.5.2.11, 2.5.4.25, 2.5.5.7, 3.1.1.3, and 2.4.8.11-FIPS or earlier allows remote attackers to bypass authentication mechanisms and obtain management or VPN interface access.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 2.4.8.11-fips (включая)
Одно из
cpe:2.3:a:aruba_networks:aruba_mobility_controllers:*:*:*:*:*:*:*:*
cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.3.6.15:*:*:*:*:*:*:*
cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.5.2.11:*:*:*:*:*:*:*
cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.5.4.25:*:*:*:*:*:*:*
cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.5.5.7:*:*:*:*:*:*:*
cpe:2.3:a:aruba_networks:aruba_mobility_controllers:3.1.1.3:*:*:*:*:*:*:*
EPSS
Процентиль: 53%
0.00306
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
почти 4 года назад
Unspecified vulnerability in the LDAP authentication feature in Aruba Mobility Controller 2.3.6.15, 2.5.2.11, 2.5.4.25, 2.5.5.7, 3.1.1.3, and 2.4.8.11-FIPS or earlier allows remote attackers to bypass authentication mechanisms and obtain management or VPN interface access.
EPSS
Процентиль: 53%
0.00306
Низкий
6.8 Medium
CVSS2
Дефекты
CWE-287