CVE-2023-45621
First published: Tue Nov 14 2023(Updated: )
Unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the CLI service accessed via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to interrupt the normal operation of the affected access point.
Credit: security-alert@hpe.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Arubanetworks Arubaos | >=10.3.0.0<10.4.0.3 | |
| Arubanetworks Arubaos | =10.5.0.0 | |
| Hp Instantos | >=6.4.0.0<8.6.0.23 | |
| Hp Instantos | >=8.10.0.0<8.10.0.9 | |
| Hp Instantos | >=8.11.0.0<8.11.2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2023-45621?
CVE-2023-45621 is a vulnerability that allows unauthenticated Denial-of-Service (DoS) attacks on the CLI service accessed via the PAPI protocol.
How does CVE-2023-45621 impact ArubaOS?
CVE-2023-45621 affects ArubaOS versions 10.3.0.0 to 10.4.0.3 and 10.5.0.0, allowing interruption of the normal operation of the affected access point.
How does CVE-2023-45621 impact HP InstantOS?
CVE-2023-45621 affects HP InstantOS versions 6.4.0.0 to 8.6.0.23, 8.10.0.0 to 8.10.0.9, and 8.11.0.0 to 8.11.2.0.
What is the severity of CVE-2023-45621?
CVE-2023-45621 has a severity rating of 7.5 (High).
How can I fix CVE-2023-45621?
To fix CVE-2023-45621, apply the necessary security patches provided by Aruba Networks or HP, depending on the affected software.
- collector/mitre-cve
- collector/nvd-api
- vendor/arubanetworks
- canonical/arubanetworks arubaos
- version/arubanetworks arubaos/10.3.0.0
- version/arubanetworks arubaos/10.5.0.0
- vendor/hp
- canonical/hp instantos
- version/hp instantos/6.4.0.0
- version/hp instantos/8.10.0.0
- version/hp instantos/8.11.0.0