First published: Fri Jan 31 2020(Updated: )
Multiple vulnerabilities exists in Aruba Instate before 4.1.3.0 and 4.2.3.1 due to insufficient validation of user-supplied input and insufficient checking of parameters, which could allow a malicious user to bypass security restrictions, obtain sensitive information, perform unauthorized actions and execute arbitrary code.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Arubanetworks Airwave | <8.2.0.0 | |
Arubanetworks Aruba Instant | <4.1.3.0 | |
Arubanetworks Aruba Instant | =4.2.3.1 | |
Arubanetworks Arubaos | ||
Siemens Scalance W1750d Firmware | ||
Siemens SCALANCE W1750D |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2016-2031 is critical.
Aruba Instate versions before 4.1.3.0 and 4.2.3.1 are affected by CVE-2016-2031.
The CWE ID of CVE-2016-2031 is 20.
A malicious user can exploit CVE-2016-2031 by bypassing security restrictions, obtaining sensitive information, and performing unauthorized actions.
No, Siemens Scalance W1750d devices are not vulnerable to CVE-2016-2031.