// For flags

CVE-2019-5322

 

Severity Score

7.5
*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A remotely exploitable information disclosure vulnerability is present in Aruba Intelligent Edge Switch models 5400, 3810, 2920, 2930, 2530 with GigT port, 2530 10/100 port, or 2540. The vulnerability impacts firmware 16.08.* before 16.08.0009, 16.09.* before 16.09.0007 and 16.10.* before 16.10.0003. The vulnerability allows an attacker to retrieve sensitive system information. This attack can be carried out without user authentication under very specific conditions.

Una vulnerabilidad de divulgación de información remotamente explotable está presente en Aruba Intelligent Edge Switch modelos 5400, 3810, 2920, 2930, 2530 con puerto GigT, puerto 2530 10/100 o 2540. La vulnerabilidad afecta a versiones de firmware 16.08.* anteriores a 16.08.0009, 16.09.* anteriores a 16.09.0007 y 16.10.* anteriores a 16.10.0003. La vulnerabilidad permite a un atacante recuperar información confidencial del sistema. Este ataque puede llevarse a cabo sin autenticación del usuario bajo condiciones muy específicas.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
None
Availability
None
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
Partial
Integrity
None
Availability
None
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2019-01-04 CVE Reserved
  • 2020-02-12 CVE Published
  • 2023-03-07 EPSS Updated
  • 2024-08-04 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
References (1)
URL Tag Source
URL Date SRC
URL Date SRC
URL Date SRC
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-001.txt 2020-08-24
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Arubanetworks
Search vendor "Arubanetworks"
 5400r Firmware
Search vendor "Arubanetworks" for product "5400r Firmware"
 >= 16.08.0 < 16.08.0009
Search vendor "Arubanetworks" for product "5400r Firmware" and version " >= 16.08.0 < 16.08.0009"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 5400r
Search vendor "Arubanetworks" for product "5400r"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 5400r Firmware
Search vendor "Arubanetworks" for product "5400r Firmware"
 >= 16.09.0 < 16.09.0007
Search vendor "Arubanetworks" for product "5400r Firmware" and version " >= 16.09.0 < 16.09.0007"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 5400r
Search vendor "Arubanetworks" for product "5400r"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 5400r Firmware
Search vendor "Arubanetworks" for product "5400r Firmware"
 >= 16.10.0 < 16.10.0003
Search vendor "Arubanetworks" for product "5400r Firmware" and version " >= 16.10.0 < 16.10.0003"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 5400r
Search vendor "Arubanetworks" for product "5400r"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 3810 Firmware
Search vendor "Arubanetworks" for product "3810 Firmware"
 >= 16.08.0 < 16.08.0009
Search vendor "Arubanetworks" for product "3810 Firmware" and version " >= 16.08.0 < 16.08.0009"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 3810
Search vendor "Arubanetworks" for product "3810"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 3810 Firmware
Search vendor "Arubanetworks" for product "3810 Firmware"
 >= 16.09.0 < 16.09.0007
Search vendor "Arubanetworks" for product "3810 Firmware" and version " >= 16.09.0 < 16.09.0007"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 3810
Search vendor "Arubanetworks" for product "3810"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 3810 Firmware
Search vendor "Arubanetworks" for product "3810 Firmware"
 >= 16.10.0 < 16.10.0003
Search vendor "Arubanetworks" for product "3810 Firmware" and version " >= 16.10.0 < 16.10.0003"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 3810
Search vendor "Arubanetworks" for product "3810"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2920 Firmware
Search vendor "Arubanetworks" for product "2920 Firmware"
 >= 16.08.0 < 16.08.0009
Search vendor "Arubanetworks" for product "2920 Firmware" and version " >= 16.08.0 < 16.08.0009"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2920
Search vendor "Arubanetworks" for product "2920"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2920 Firmware
Search vendor "Arubanetworks" for product "2920 Firmware"
 >= 16.09.0 < 16.09.0007
Search vendor "Arubanetworks" for product "2920 Firmware" and version " >= 16.09.0 < 16.09.0007"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2920
Search vendor "Arubanetworks" for product "2920"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2920 Firmware
Search vendor "Arubanetworks" for product "2920 Firmware"
 >= 16.10.0 < 16.10.0003
Search vendor "Arubanetworks" for product "2920 Firmware" and version " >= 16.10.0 < 16.10.0003"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2920
Search vendor "Arubanetworks" for product "2920"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2930 Firmware
Search vendor "Arubanetworks" for product "2930 Firmware"
 >= 16.08.0 < 16.08.0009
Search vendor "Arubanetworks" for product "2930 Firmware" and version " >= 16.08.0 < 16.08.0009"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2930
Search vendor "Arubanetworks" for product "2930"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2930 Firmware
Search vendor "Arubanetworks" for product "2930 Firmware"
 >= 16.09.0 < 16.09.0007
Search vendor "Arubanetworks" for product "2930 Firmware" and version " >= 16.09.0 < 16.09.0007"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2930
Search vendor "Arubanetworks" for product "2930"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2930 Firmware
Search vendor "Arubanetworks" for product "2930 Firmware"
 >= 16.10.0 < 16.10.0003
Search vendor "Arubanetworks" for product "2930 Firmware" and version " >= 16.10.0 < 16.10.0003"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2930
Search vendor "Arubanetworks" for product "2930"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2530 With Gigt Port Firmware
Search vendor "Arubanetworks" for product "2530 With Gigt Port Firmware"
 >= 16.08.0 < 16.08.0009
Search vendor "Arubanetworks" for product "2530 With Gigt Port Firmware" and version " >= 16.08.0 < 16.08.0009"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2530 With Gigt Port
Search vendor "Arubanetworks" for product "2530 With Gigt Port"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2530 With Gigt Port Firmware
Search vendor "Arubanetworks" for product "2530 With Gigt Port Firmware"
 >= 16.09.0 < 16.09.0007
Search vendor "Arubanetworks" for product "2530 With Gigt Port Firmware" and version " >= 16.09.0 < 16.09.0007"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2530 With Gigt Port
Search vendor "Arubanetworks" for product "2530 With Gigt Port"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2530 With Gigt Port Firmware
Search vendor "Arubanetworks" for product "2530 With Gigt Port Firmware"
 >= 16.10.0 < 16.10.0003
Search vendor "Arubanetworks" for product "2530 With Gigt Port Firmware" and version " >= 16.10.0 < 16.10.0003"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2530 With Gigt Port
Search vendor "Arubanetworks" for product "2530 With Gigt Port"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2530 10\/100 Port Firmware
Search vendor "Arubanetworks" for product "2530 10\/100 Port Firmware"
 >= 16.08.0 < 16.08.0009
Search vendor "Arubanetworks" for product "2530 10\/100 Port Firmware" and version " >= 16.08.0 < 16.08.0009"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2530 10\/100 Port
Search vendor "Arubanetworks" for product "2530 10\/100 Port"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2530 10\/100 Port Firmware
Search vendor "Arubanetworks" for product "2530 10\/100 Port Firmware"
 >= 16.09.0 < 16.09.0007
Search vendor "Arubanetworks" for product "2530 10\/100 Port Firmware" and version " >= 16.09.0 < 16.09.0007"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2530 10\/100 Port
Search vendor "Arubanetworks" for product "2530 10\/100 Port"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2530 10\/100 Port Firmware
Search vendor "Arubanetworks" for product "2530 10\/100 Port Firmware"
 >= 16.10.0 < 16.10.0003
Search vendor "Arubanetworks" for product "2530 10\/100 Port Firmware" and version " >= 16.10.0 < 16.10.0003"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2530 10\/100 Port
Search vendor "Arubanetworks" for product "2530 10\/100 Port"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2540 Firmware
Search vendor "Arubanetworks" for product "2540 Firmware"
 >= 16.08.0 < 16.08.0009
Search vendor "Arubanetworks" for product "2540 Firmware" and version " >= 16.08.0 < 16.08.0009"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2540
Search vendor "Arubanetworks" for product "2540"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2540 Firmware
Search vendor "Arubanetworks" for product "2540 Firmware"
 >= 16.09.0 < 16.09.0007
Search vendor "Arubanetworks" for product "2540 Firmware" and version " >= 16.09.0 < 16.09.0007"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2540
Search vendor "Arubanetworks" for product "2540"
--
Safe
Arubanetworks
Search vendor "Arubanetworks"
 2540 Firmware
Search vendor "Arubanetworks" for product "2540 Firmware"
 >= 16.10.0 < 16.10.0003
Search vendor "Arubanetworks" for product "2540 Firmware" and version " >= 16.10.0 < 16.10.0003"
-
Affected
in Arubanetworks
Search vendor "Arubanetworks"
 2540
Search vendor "Arubanetworks" for product "2540"
--
Safe