First published: Wed Oct 30 2019(Updated: )
Aruba Instant 4.x prior to 6.4.4.8-4.2.4.12, 6.5.x prior to 6.5.4.11, 8.3.x prior to 8.3.0.6, and 8.4.x prior to 8.4.0.1 allows Command injection.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Arubanetworks Instant | >=4.0.0.0<4.2.4.12 | |
Arubanetworks Instant | >=6.5.0.0<6.5.4.11 | |
Arubanetworks Instant | >=8.3.0.0<8.3.0.6 | |
Arubanetworks Instant | >=8.4.0.0<8.4.0.1 | |
Siemens W1750d Firmware | <8.4.0.1 | |
Siemens W1750d |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2018-16417 is high, with a severity value of 7.5.
The affected software of CVE-2018-16417 is Aruba Instant versions 4.x, 6.5.x, 8.3.x, and 8.4.x.
CVE-2018-16417 allows command injection through a vulnerability in Aruba Instant.
Siemens W1750d devices are not vulnerable to CVE-2018-16417.
You can find more information about CVE-2018-16417 at the following references: [SecurityFocus](http://www.securityfocus.com/bid/108374), [Siemens Product Cert](https://cert-portal.siemens.com/productcert/pdf/ssa-549547.pdf), [Anquanke](https://www.anquanke.com/vul/id/1652568).