Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
445
VMScore

CVE-2016-2032

Published: 31/01/2020 Updated: 04/05/2021
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Arubanetworks

Vulnerability Summary

A vulnerability exists in the Aruba AirWave Management Platform 8.x before 8.2 in the management interface of an underlying system component called RabbitMQ, which could let a malicious user obtain sensitive information. This interface listens on TCP port 15672 and 55672

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

arubanetworks airwave

arubanetworks aruba instant

arubanetworks aruba instant 4.2.3.1

arubanetworks arubaos

Exploits

Exploit DB: Aruba Authentication Bypass / Insecure Transport / Tons Of Issues
Multiple vulnerabilities were identified in Aruba AP, IAP and AMP devices The vulnerabilities were discovered during a black box security assessment and therefore the vulnerability list should not be considered exhaustive Several of the high severity vulnerabilities listed in this report are related to the Aruba proprietary PAPI protocol and allo ...

Recent Articles

Aruba! Aruba! Patch now, patch fast!
The Register • Richard Chirgwin • 09 May 2016

Google bug-hunters disclose 26 vulnerabilities

Aruba Networks is slinging patches at a bunch of vulnerabilities in management platforms, its Aruba Instant Platform, and its proprietary ArubaOS PAPI management API. The company posted three advisories here after Google put it on a 90-day deadline, with the Chocolate Factory's Sven Blumenstein dropping a consolidated report of 26 individual vulns at Full Disclosure on Friday. Al are considered “urgent”, according to the HP subsidiary. In a tone of some irritation, Aruba says it's “remindi...

Read more...

References

CWE-287http://seclists.org/fulldisclosure/2016/May/19http://packetstormsecurity.com/files/136997/Aruba-Authentication-Bypass-Insecure-Transport-Tons-Of-Issues.htmlhttp://www.arubanetworks.com/assets/alert/ARUBA-PSA-2016-005.txthttps://www.google.com/about/appsecurity/research/https://nvd.nist.govhttps://www.theregister.co.uk/2016/05/09/aruba_aruba_patch_now_patch_fast/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32744privilege escalationCVE-2024-30253CVE-2024-3914cross-site scriptingCVE-2024-31497CVE-2024-3400CVE-2024-32341hardcoded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook