CVE-2021-25161
Published Mar 30, 2021
Last updated 3 years ago
Overview
- Description
- A remote cross-site scripting (xss) vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.11 and below; Aruba Instant 8.6.x: 8.6.0.7 and below; Aruba Instant 8.7.x: 8.7.1.1 and below. Aruba has released patches for Aruba Instant that address this security vulnerability.
- Source
- security-alert@hpe.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 6.1
- Impact score
- 2.7
- Exploitability score
- 2.8
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
- Severity
- MEDIUM
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[ { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "60DB6954-B71C-4473-A746-7D8D588360A4", "versionEndIncluding": "6.4.4.8-4.2.4.18", "versionStartIncluding": "6.4.0.0" }, { "criteria": "cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "625B5BED-1E8C-434D-948B-A9C99A3A1336", "versionEndExcluding": "6.5.4.19", "versionStartIncluding": "6.5.0.0" }, { "criteria": "cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "429A4826-11FA-4E69-A006-97ECBD144D0F", "versionEndExcluding": "8.3.0.15", "versionStartIncluding": "8.3.0.0" }, { "criteria": "cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "76A177FA-BFBC-4E9E-AA2E-8FA49D66A06C", "versionEndExcluding": "8.5.0.12", "versionStartIncluding": "8.5.0.0" }, { "criteria": "cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1D73052E-BA70-4DBC-8D23-8EF750AFB59B", "versionEndExcluding": "8.6.0.8", "versionStartIncluding": "8.6.0.0" }, { "criteria": "cpe:2.3:o:arubanetworks:instant:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F889114B-15B5-4224-8B58-179F33C4959B", "versionEndExcluding": "8.7.1.2", "versionStartIncluding": "8.7.0.0" } ], "operator": "OR" } ] }, { "nodes": [ { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:o:siemens:scalance_w1750d_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DDC134F8-5D6A-4D37-9BC7-CA0C772F8823", "versionEndExcluding": "8.7.1.3", "versionStartIncluding": "8.7.0" } ], "operator": "OR" }, { "negate": false, "cpeMatch": [ { "criteria": "cpe:2.3:h:siemens:scalance_w1750d:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FBC30055-239F-4BB1-B2D1-E5E35F0D8911" } ], "operator": "OR" } ], "operator": "AND" } ]