Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2019-5320
HistoryAug 26, 2020 - 11:15 p.m.

CVE-2019-5320

2020-08-2623:15:11
CWE-79
[email protected]
web.nvd.nist.gov
5
aruba switches
cross site scripting
firmware vulnerability

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

33.8%

JSON

Aruba Intelligent Edge Switch Series 2540, 2530, 2930F, 2930M, 2920, 5400R, and 3810M with firmware 16.08.* before 16.08.0009, 16.09.* before 16.09.0007, 16.10.* before 16.10.0003 are vulnerable to Cross Site Scripting in the web UI, leading to injection of code.

Affected configurations

Nvd
Node
arubanetworks5400r_firmwareRange16.08.016.08.0009
OR
arubanetworks5400r_firmwareRange16.09.016.09.0007
OR
arubanetworks5400r_firmwareRange16.10.016.10.0003
AND
arubanetworks5400rMatch-
Node
arubanetworks3810_firmwareRange16.08.016.08.0009
OR
arubanetworks3810_firmwareRange16.09.016.09.0007
OR
arubanetworks3810_firmwareRange16.10.016.10.0003
AND
arubanetworks3810Match-
Node
arubanetworks2920_firmwareRange16.08.016.08.0009
OR
arubanetworks2920_firmwareRange16.09.016.09.0007
OR
arubanetworks2920_firmwareRange16.10.016.10.0003
AND
arubanetworks2920Match-
Node
arubanetworks2930_firmwareRange16.08.016.08.0009
OR
arubanetworks2930_firmwareRange16.09.016.09.0007
OR
arubanetworks2930_firmwareRange16.10.016.10.0003
AND
arubanetworks2930Match-
Node
arubanetworks2530_firmwareRange16.08.016.08.0009
OR
arubanetworks2530_firmwareRange16.09.016.09.0007
OR
arubanetworks2530_firmwareRange16.10.016.10.0003
AND
arubanetworks2530Match-
Node
arubanetworks2530_firmwareRange16.08.016.08.0009
OR
arubanetworks2530_firmwareRange16.09.016.09.0007
OR
arubanetworks2530_firmwareRange16.10.016.10.0003
AND
arubanetworks2530Match-
Node
arubanetworks2540_firmwareRange16.08.016.08.0009
OR
arubanetworks2540_firmwareRange16.09.016.09.0007
OR
arubanetworks2540_firmwareRange16.10.016.10.0003
AND
arubanetworks2540Match-
VendorProductVersionCPE
arubanetworks5400r_firmware*cpe:2.3:o:arubanetworks:5400r_firmware:*:*:*:*:*:*:*:*
arubanetworks5400r-cpe:2.3:h:arubanetworks:5400r:-:*:*:*:*:*:*:*
arubanetworks3810_firmware*cpe:2.3:o:arubanetworks:3810_firmware:*:*:*:*:*:*:*:*
arubanetworks3810-cpe:2.3:h:arubanetworks:3810:-:*:*:*:*:*:*:*
arubanetworks2920_firmware*cpe:2.3:o:arubanetworks:2920_firmware:*:*:*:*:*:*:*:*
arubanetworks2920-cpe:2.3:h:arubanetworks:2920:-:*:*:*:*:*:*:*
arubanetworks2930_firmware*cpe:2.3:o:arubanetworks:2930_firmware:*:*:*:*:*:*:*:*
arubanetworks2930-cpe:2.3:h:arubanetworks:2930:-:*:*:*:*:*:*:*
arubanetworks2530_firmware*cpe:2.3:o:arubanetworks:2530_firmware:*:*:*:*:*:*:*:*
arubanetworks2530-cpe:2.3:h:arubanetworks:2530:-:*:*:*:*:*:*:*
Rows per page:
1-10 of 121

Related

cve 1
prion 1
cvelist 1
nessus 1
cve
cve
CVE-2019-5320
2020-08-26 23:15:11
prion
prion
Cross site scripting
2020-08-26 23:15:00
cvelist
cvelist
CVE-2019-5320
2020-08-26 22:30:55
nessus
nessus
ArubaOS-Switch Multiple Vulnerabilities (ARUBA-PSA-2020-007)
2021-06-24 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

6.1

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

EPSS

0.001

Percentile

33.8%

JSON
Related for NVD:CVE-2019-5320
cve1prion1cvelist1nessus1