CVE-2018-7080 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2018-7080?

CVE-2018-7080 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2018-7080?

Check the references section above for vendor advisories and patch information. Affected products include: Arubanetworks Arubaos, Arubanetworks 203Rp Firmware, Arubanetworks 203Rp, Arubanetworks 203R Firmware, Arubanetworks 203R.

Vulnerability Description

A vulnerability exists in the firmware of embedded BLE radios that are part of some Aruba Access points. An attacker who is able to exploit the vulnerability could install new, potentially malicious firmware into the AP's BLE radio and could then gain access to the AP's console port. This vulnerability is applicable only if the BLE radio has been enabled in affected access points. The BLE radio is disabled by default. Note - Aruba products are NOT affected by a similar vulnerability being tracked as CVE-2018-16986.

CVSS Score

7.5

HIGH

CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Arubanetworks	Arubaos	>= 6.4.4.0, < 6.4.4.20
Arubanetworks	203Rp Firmware	-
Arubanetworks	203Rp	-
Arubanetworks	203R Firmware	-
Arubanetworks	203R	-
Arubanetworks	Ap-300 Series Access Points Firmware	-
Arubanetworks	Ap-300 Series Access Points	-
Arubanetworks	Ap-300 Series Instant Access Points Firmware	-
Arubanetworks	Ap-300 Series Instant Access Points	-

References

http://www.securityfocus.com/bid/105814Third Party AdvisoryVDB Entry
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-006.txtMitigationVendor Advisory
http://www.securityfocus.com/bid/105814Third Party AdvisoryVDB Entry
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-006.txtMitigationVendor Advisory

FAQ

What is CVE-2018-7080?

CVE-2018-7080 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability exists in the firmware of embedded BLE radios that are part of some Aruba Access points. An attacker who is able to exploit the vulnerability could install new, potentially malicious f...

How severe is CVE-2018-7080?

CVE-2018-7080 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2018-7080?

Check the references section above for vendor advisories and patch information. Affected products include: Arubanetworks Arubaos, Arubanetworks 203Rp Firmware, Arubanetworks 203Rp, Arubanetworks 203R Firmware, Arubanetworks 203R.