VDB
CNVD-2021-89450
CNVD-2021-89450
PUBLISHED
Aruba Instant是一个无线网络。提供了唯一一种易于设置的Wi-Fi解决方案。 Aruba Instant存在命令注入漏洞,该漏洞是由于web界面中的输入验证不正确造成的。攻击者以利用漏洞向应用程序发送精心编制的HTTP请求,并在目标系统上执行任意OS命令。
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Aruba Instant 8.5.0.11 | ||
| Aruba Networks Aruba Instant 6.4.x.x | ||
| Aruba Instant 8.7.1.0 | ||
| Aruba Networks Aruba Instant 6.5.x.x | ||
| Aruba Instant 6.5.4.5 | ||
| Aruba Instant 8.6.0.5 | ||
| Aruba Instant 6.5.4.10 | ||
| Aruba Instant 6.5.4.12 | ||
| Aruba Instant 8.6.0.6 | ||
| Aruba Instant 6.5.4.3 | ||
| Aruba Instant 8.6.0.2 | ||
| Aruba Instant 6.5.4.16 | ||
| Aruba Instant 8.5.0.8 | ||
| Aruba Networks Aruba Instant 8.7.x.x | ||
| Aruba Instant 6.5.4.4 | ||
| Aruba Instant 8.5.0.3 | ||
| Aruba Instant 8.5.0.5 | ||
| Aruba Instant 8.5.0.1 | ||
| Aruba Instant 6.5.4.8 | ||
| Aruba Instant 6.5.4.11 |
…and 23 more
Timeline
- Oct 10, 2021 CVE ID Reserved
- Nov 20, 2021 CVE Published