First published: Wed Mar 01 2023(Updated: )
Credit: security-alert@hpe.com
Affected Software | Affected Version | How to fix |
---|---|---|
Arubanetworks Sd-wan | >=8.7.0.0-2.3.0.0<=8.7.0.0-2.3.0.8 | |
Arubanetworks Arubaos | >=8.6.0.0<=8.6.0.19 | |
Arubanetworks Arubaos | >=8.10.0.0<=8.10.0.4 | |
Arubanetworks Arubaos | >=10.3.0.0<=10.3.1.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2023-22777 is an authenticated information disclosure vulnerability in the ArubaOS web-based management interface.
CVE-2023-22777 allows an authenticated attacker to read arbitrary files in the underlying operating system of ArubaOS.
CVE-2023-22777 has a severity rating of 6.5 (medium).
ArubaOS versions 8.6.0.0 to 8.6.0.19, 8.7.0.0 to 8.7.0.0-2.3.0.8, 8.10.0.0 to 8.10.0.4, and 10.3.0.0 to 10.3.1.0 are affected by CVE-2023-22777.
Apply the vendor-supplied patches or updates for ArubaOS to fix CVE-2023-22777.