CVE-2008-0150
Published Jan 9, 2008
Last updated 6 years ago
Overview
- Description
- Unspecified vulnerability in the LDAP authentication feature in Aruba Mobility Controller 2.3.6.15, 2.5.2.11, 2.5.4.25, 2.5.5.7, 3.1.1.3, and 2.4.8.11-FIPS or earlier allows remote attackers to bypass authentication mechanisms and obtain management or VPN interface access.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- CWE-287
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:aruba_networks:aruba_mobility_controllers:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D65E31D5-A435-4465-A36E-8B31BACAAE36",
"versionEndIncluding": "2.4.8.11-fips"
},
{
"criteria": "cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.3.6.15:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CCDD6CA8-D586-4B1A-B9DA-6D8C0D071740"
},
{
"criteria": "cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.5.2.11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B6F3D45C-90AE-4435-AFEA-D83AA60DD4B7"
},
{
"criteria": "cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.5.4.25:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A0F2CC24-FB37-487E-8DA6-2D565E668561"
},
{
"criteria": "cpe:2.3:a:aruba_networks:aruba_mobility_controllers:2.5.5.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FF7A2D49-72A9-4398-8422-8F62D1F1CBBC"
},
{
"criteria": "cpe:2.3:a:aruba_networks:aruba_mobility_controllers:3.1.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "4E0822F8-6E88-47F7-8D40-CA7FE71DB411"
}
],
"operator": "OR"
}
]
}
]