CVE-2024-25616
LOWDescription
Aruba has identified certain configurations of ArubaOS that can lead to partial disclosure of sensitive information in the IKE_AUTH negotiation process. The scenarios in which disclosure of potentially sensitive information can occur are complex, and depend on factors beyond the control of attackers.
CVSS v3.1 Score
Affected Products
| Vendor | Product |
|---|---|
| arubanetworks | arubaos |
| arubanetworks | arubaos |
| arubanetworks | arubaos |
| arubanetworks | arubaos |
References
Frequently Asked Questions
What is CVE-2024-25616? +
How severe is CVE-2024-25616? +
What products are affected by CVE-2024-25616? +
How do I check if I'm vulnerable to CVE-2024-25616? +
Related Vulnerabilities
There are buffer overflow vulnerabilities in the underlying Central Communications service that could lead to unauthenticated remote code execution by …
There is a buffer overflow vulnerability in the underlying SAE (Simultaneous Authentication of Equals) service that could lead to unauthenticated …
There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending …
There are buffer overflow vulnerabilities in the underlying CLI service that could lead to unauthenticated remote code execution by sending …
There are buffer overflow vulnerabilities in the underlying Central Communications service that could lead to unauthenticated remote code execution by …
There is a command injection vulnerability in the underlying Central Communications service that could lead to unauthenticated remote code execution …