Network Interception Vulnerability in Aruba Virtual Intranet Access Client for Windows
CVE-2022-23678
5.9MEDIUM
What is CVE-2022-23678?
A security flaw in the Aruba Virtual Intranet Access (VIA) client for Windows allows an attacker located on a privileged network to intercept sensitive data. This vulnerability is present in Aruba VIA client versions 4.3.0 build 2208101 and earlier. Aruba has issued updates to fix this issue, ensuring secure client communications. Users are encouraged to upgrade to the latest version to protect against potential data breaches.
Affected Version(s)
Aruba Virtual Intranet Access (VIA) Windows Client Only - All versions lower than VIA 4.3.0 build 2208101