Vulnerability Details : CVE-2014-8368
The web interface in Aruba Networks AirWave before 7.7.14 and 8.x before 8.0.5 allows remote authenticated users to gain privileges and execute arbitrary commands via unspecified vectors.
Products affected by CVE-2014-8368
- cpe:2.3:a:arubanetworks:airwave:*:*:*:*:*:*:*:*
- cpe:2.3:a:arubanetworks:airwave:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2014-8368
0.22%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 59 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2014-8368
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
9.0
|
HIGH | AV:N/AC:L/Au:S/C:C/I:C/A:C |
8.0
|
10.0
|
NIST |
CWE ids for CVE-2014-8368
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2014-8368
-
http://www.arubanetworks.com/support/alerts/aid-11192014.txt
Nothing found for Support Alerts Aid 11192014 TxtVendor Advisory
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/98871
Aruba Networks AirWave privilege escalation CVE-2014-8368 Vulnerability ReportThird Party Advisory;VDB Entry
Jump to