HPE Aruba CX 6405
Approved changes feed: RSS · Atom
cpe:2.3:h:hpe:aruba_cx_6405:-:*:*:*:*:*:*:*
part: h version: - update: *
| Vendor | Hpe (8bc0c2a2-a9de-5f61-aa1f-0aa716beac6b) |
|---|---|
| Product | Aruba Cx 6405 (4c40203a-91f3-5150-8d4d-f1439b6576ce) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-3718 |
not_vulnerable | 2026-06-03 14:52:41.650527 |
Authenticated Command Injection Vulnerability in AOS-CX Command Line Interface
HIGH (8.8)
An authenticated command injection vulnerability exists in the AOS-CX command line interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands on the underlying operating system as a privileged user on the affected switch. This allows an attacker to fully compromise the underlying operating system on the device running AOS-CX.
Published: 2023-08-01T18:25:10.262Z
Updated: 2024-10-22T20:29:41.391Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-1168 |
not_vulnerable | 2026-06-03 14:48:53.922244 |
Authenticated Remote Code Execution in Aruba CX Switches
HIGH (7.2)
An authenticated remote code execution vulnerability
exists in the AOS-CX Network Analytics Engine. Successful
exploitation of this vulnerability results in the ability to
execute arbitrary code as a privileged user on the underlying
operating system, leading to a complete compromise of the
switch running AOS-CX.
Published: 2023-03-21T20:22:09.558Z
Updated: 2025-02-26T16:33:03.782Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-41003 |
not_vulnerable | 2026-06-03 14:45:24.886022 |
Details available
Multiple unauthenticated command injection vulnerabilities were discovered in the AOS-CX API interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): AOS-CX 10.06.xxxx: 10.06.0170 and below, AOS-CX 10.07.xxxx: 10.07.0050 and below, AOS-CX 10.08.xxxx: 10.08.1030 and below, AOS-CX 10.09.xxxx: 10.09.0002 and below. Aruba has released upgrades for Aruba AOS-CX devices that address these security vulnerabilities.
Published: 2022-03-02T21:41:42.000Z
Updated: 2024-08-04T02:59:30.997Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-41002 |
not_vulnerable | 2026-06-03 14:45:24.885389 |
Details available
Multiple authenticated remote path traversal vulnerabilities were discovered in the AOS-CX command line interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): AOS-CX 10.06.xxxx: 10.06.0170 and below, AOS-CX 10.07.xxxx: 10.07.0050 and below, AOS-CX 10.08.xxxx: 10.08.1030 and below, AOS-CX 10.09.xxxx: 10.09.0002 and below. Aruba has released upgrades for Aruba AOS-CX devices that address these security vulnerabilities.
Published: 2022-03-02T21:40:31.000Z
Updated: 2024-08-04T02:59:31.058Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-41001 |
not_vulnerable | 2026-06-03 14:45:24.884737 |
Details available
An authenticated remote code execution vulnerability was discovered in the AOS-CX Network Analytics Engine (NAE) in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): AOS-CX 10.07.xxxx: 10.07.0050 and below, AOS-CX 10.08.xxxx: 10.08.1030 and below, AOS-CX 10.09.xxxx: 10.09.0002 and below. Aruba has released upgrades for Aruba AOS-CX devices that address this security vulnerability.
Published: 2022-03-02T21:38:10.000Z
Updated: 2024-08-04T02:59:30.299Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2021-41000 |
not_vulnerable | 2026-06-03 14:45:24.883504 |
Details available
Multiple authenticated remote code execution vulnerabilities were discovered in the AOS-CX command line interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): AOS-CX 10.06.xxxx: 10.06.0170 and below, AOS-CX 10.07.xxxx: 10.07.0050 and below, AOS-CX 10.08.xxxx: 10.08.1030 and below. Aruba has released upgrades for Aruba AOS-CX devices that address these security vulnerabilities.
Published: 2022-03-02T21:39:25.000Z
Updated: 2024-08-04T02:59:31.406Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2002-20001 |
not_vulnerable | 2026-06-03 14:26:22.849550 |
Details available
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.
Published: 2021-11-11T00:00:00.000Z
Updated: 2025-02-13T16:27:06.803Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.