Published: 31/01/2020 Updated: 07/02/2020
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Vulnerability Summary

A vulnerability exists in the Aruba AirWave Management Platform 8.x before 8.2 in the management interface of an underlying system component called RabbitMQ, which could let a malicious user obtain sensitive information. This interface listens on TCP port 15672 and 55672

Vulnerability Trend

Affected Products

Vendor Product Versions
ArubanetworksAruba Instant4.2.3.1

Mailing Lists

Multiple vulnerabilities were identified in Aruba AP, IAP and AMP devices The vulnerabilities were discovered during a black box security assessment and therefore the vulnerability list should not be considered exhaustive Several of the high severity vulnerabilities listed in this report are related to the Aruba proprietary PAPI protocol and allo ...

Recent Articles

Aruba! Aruba! Patch now, patch fast!
The Register • Richard Chirgwin • 09 May 2016

Google bug-hunters disclose 26 vulnerabilities

Aruba Networks is slinging patches at a bunch of vulnerabilities in management platforms, its Aruba Instant Platform, and its proprietary ArubaOS PAPI management API.
The company posted three advisories here after Google put it on a 90-day deadline, with the Chocolate Factory's Sven Blumenstein dropping a consolidated report of 26 individual vulns at Full Disclosure on Friday.
Al are considered “urgent”, according to the HP subsidiary.
In a tone of some irritation, Aruba sa...