Security News > 2022 > May > Critical TLStorm 2.0 Bugs Affect Widely-Used Aruba and Avaya Network Switches

Cybersecurity researchers have detailed as many as five severe security flaws in the implementation of TLS protocol in several models of Aruba and Avaya network switches that could be abused to gain remote access to enterprise networks and steal valuable information.

The new set of flaws, dubbed TLStorm 2.0, renders Aruba and Avaya network switches vulnerable to remote code execution vulnerabilities, enabling an adversary to commandeer the devices, move laterally across the network, and exfiltrate sensitive data.

CVE-2022-23676 - Two memory corruption vulnerabilities in the RADIUS client implementation of Aruba switches.

CVE-2022-29860 - TLS reassembly heap overflow vulnerability in Avaya switches.

CVE-2022-29861 - HTTP header parsing stack overflow vulnerability in Avaya switches.

"These research findings are significant as they highlight that the network infrastructure itself is at risk and exploitable by attackers, meaning that network segmentation alone is no longer sufficient as a security measure," Barak Hadad, head of research in engineering at Armis, said.

News URL

https://thehackernews.com/2022/05/critical-tlstorm-20-bugs-affect-widely.html