Memory Corruption Vulnerabilities in Aruba CX Switches
CVE-2020-7122

7.5HIGH

Key Information:

Vendor: Aruba
Status: Aruba Cx Switch Series 6200f, 6300, 6400, 8320, 8325, And 8400
Vendor: CVE Published:; 23 September 2020

What is CVE-2020-7122?

Two memory corruption vulnerabilities have been identified in the Aruba CX Switch Series 6200F, 6300, 6400, 8320, 8325, and 8400. If successfully exploited, these vulnerabilities can cause a Local Denial of Service of the Cisco Discovery Protocol (CDP) process on the switch, impacting network stability and performance. This issue primarily affects firmware versions prior to 10.04.1000. It is crucial for network administrators to be aware of these vulnerabilities and ensure that their devices are running the latest firmware to mitigate risks.

Affected Version(s)

Aruba CX Switch Series 6200F, 6300, 6400, 8320, 8325, and 8400 Firmware 10.04.1000 and below

References

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020...

x_refsource_MISC

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Sep 23, 2020
Vulnerability Reserved
Jan 16, 2020

CVE-2020-7122 Data

JSON