Vulnerabilities > CVE-2022-37904 - Unspecified vulnerability in Arubanetworks Arubaos and Sd-Wan

047910
CVSS 8.8 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
arubanetworks

Summary

Vulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an attacker to execute arbitrary code during the boot sequence. Successful exploitation could allow an attacker to achieve permanent modification of the underlying operating system.

Vulnerable Configurations

Part Description Count
Application
Arubanetworks
1
OS
Arubanetworks
49
Hardware
Arubanetworks
10