CVE-2009-3836

Published Nov 2, 2009

Last updated 15 years ago

CVSS info 6.1

Overview

Description: ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service (Access Point crash) via a malformed 802.11 Association Request management frame.
Source: cve@mitre.org
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 6.1
Impact score: 6.9
Exploitability score: 6.5
Vector string: AV:A/AC:L/Au:N/C:N/I:N/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:arubanetworks:arubaos:3.1.1:rn:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A929FE47-A479-49B8-A7DC-C6B72C95B7FF"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:arubaos:3.3.1.16:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C79BFC0F-08A2-49CE-BA64-249093C2BFC5"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:arubaos:3.3.1.29:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "07DEE617-601D-45A0-A866-2A7CCD83D132"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:arubaos:3.3.1.30:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "61B7E81A-1CFC-44BF-9C29-E802E19554B5"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:arubaos:3.3.2.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "CF90F10B-64EA-4BFB-991F-11BD3192E2AB"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:arubaos:3.3.2.14:fips:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "DF6024D5-4D55-4716-B788-92E406C84F83"
          },
          {
            "criteria": "cpe:2.3:o:arubanetworks:arubaos:3.4.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0F41F28B-202A-4853-BE79-922CBE65E117"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:arubanetworks:aruba_mobility_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7CEC5D17-929C-4814-A021-3AC9251F6EA4"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References