Local Privilege Escalation in HPE Aruba Networking Virtual Intranet Access (VIA) Microsoft Windows Client
CVE-2023-38401
7.8HIGH
What is CVE-2023-38401?
A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client allows local users to elevate their privileges. If successfully exploited, an attacker may execute arbitrary code with NT AUTHORITY\SYSTEM privileges, potentially compromising the operating system's integrity. This vulnerability highlights the importance of safeguarding local access and applying necessary updates to mitigate the risk.
Affected Version(s)
HPE Aruba Networking Virtual Intranet Access (VIA) Windows HPE Aruba Networking Virtual Intranet Access (VIA) client for Microsoft Windows