high
7.5
CWE
787
Advisory Published
Updated

CVE-2020-7122

First published: Wed Sep 23 2020(Updated: )

Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local Denial of Service of the CDP (Cisco Discovery Protocol) process in the switch. This applies to firmware versions prior to 10.04.1000.

Credit: security-alert@hpe.com

Affected SoftwareAffected VersionHow to fix
All of
Aruba Networks CX 6200F Firmware<=10.04.1000
Aruba CX 6200F
All of
Aruba Networks CX 6300<=10.04.1000
Aruba Networks CX 6300
All of
Aruba CX 6400 firmware<=10.04.1000
Aruba Networks CX 6400
All of
Aruba CX 8320 firmware<=10.04.1000
Aruba CX 8320
All of
Aruba CX 8325 firmware<=10.04.1000
Aruba Networks CX 8325 Firmware
All of
Aruba Networks CX 8400<=10.04.1000
Aruba Networks CX 8400
Aruba Networks CX 6200F Firmware<=10.04.1000
Aruba Networks CX 6200F Firmware
Aruba CX 6300<=10.04.1000
HPE Aruba CX 6300M 24-port
Aruba CX 6400 Firmware<=10.04.1000
Aruba CX 6400 Firmware
Aruba Networks CX 8320 Firmware<=10.04.1000
Aruba CX 8320 firmware
Aruba Networks CX 8325 Firmware<=10.04.1000
Aruba Networks CX 8325
Aruba Networks CX 8400 Firmware<=10.04.1000
Aruba Networks CX 8400 Firmware

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2020-7122?

    CVE-2020-7122 has been classified as a Low severity vulnerability that can lead to Local Denial of Service.

  • How do I fix CVE-2020-7122?

    To fix CVE-2020-7122, upgrade the firmware of affected Aruba CX switches to versions later than 10.04.1000.

  • Which devices are affected by CVE-2020-7122?

    CVE-2020-7122 affects Aruba CX Switches in the 6200F, 6300, 6400, 8320, 8325, and 8400 Series.

  • What type of attacks can exploit CVE-2020-7122?

    CVE-2020-7122 can be exploited to cause a Local Denial of Service on the CDP process of the switch.

  • When was CVE-2020-7122 discovered?

    CVE-2020-7122 was disclosed in the year 2020 as part of a series of vulnerabilities in Aruba CX Switch firmware.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203