First published: Tue Sep 07 2021(Updated: )
A remote cross-site request forgery (csrf) vulnerability was discovered in Aruba Operating System Software version(s): 6.x.x.x: all versions, 8.x.x.x: all versions prior to 8.8.0.0. Aruba has released patches for ArubaOS that address this security vulnerability.
Credit: security-alert@hpe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Arubanetworks Arubaos | >=6.1.3.7<=6.5.4.20 | |
Arubanetworks Arubaos | >=8.0.0.0<8.8.0.0 | |
Siemens Scalance W1750d Firmware | ||
Siemens SCALANCE W1750D |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2019-5318.
The impacted software includes Aruba Operating System Software versions 6.x.x.x (all versions) and 8.x.x.x (all versions prior to 8.8.0.0), as well as Siemens Scalance W1750d Firmware.
The severity rating of CVE-2019-5318 is high with a severity value of 6.5.
To fix CVE-2019-5318, apply the patches provided by ArubaOS or Siemens Scalance W1750d Firmware.
You can find more information about CVE-2019-5318 in the references provided: [link1](https://cert-portal.siemens.com/productcert/pdf/ssa-280624.pdf) [link2](https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-016.txt)