CVE-2017-9003

high

Description

Multiple memory corruption flaws are present in ArubaOS which could allow an unauthenticated user to crash ArubaOS processes. With sufficient time and effort, it is possible these vulnerabilities could lead to the ability to execute arbitrary code - remote code execution has not yet been confirmed.

References

http://www.securitytracker.com/id/1039580

http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-006.txt

Details

Source: Mitre, NVD

Published: 2018-08-06

Updated: 2018-10-18

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H