Vulnerability Description
Aruba Intelligent Edge Switch Series 2540, 2530, 2930F, 2930M, 2920, 5400R, and 3810M with firmware 16.08.* before 16.08.0009, 16.09.* before 16.09.0007, 16.10.* before 16.10.0003 are vulnerable to Cross Site Scripting in the web UI, leading to injection of code.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Arubanetworks | 5400R Firmware | >= 16.08.0, < 16.08.0009 |
| Arubanetworks | 5400R | - |
| Arubanetworks | 3810 Firmware | >= 16.08.0, < 16.08.0009 |
| Arubanetworks | 3810 | - |
| Arubanetworks | 2920 Firmware | >= 16.08.0, < 16.08.0009 |
| Arubanetworks | 2920 | - |
| Arubanetworks | 2930 Firmware | >= 16.08.0, < 16.08.0009 |
| Arubanetworks | 2930 | - |
| Arubanetworks | 2530 Firmware | >= 16.08.0, < 16.08.0009 |
| Arubanetworks | 2530 | - |
| Arubanetworks | 2540 Firmware | >= 16.08.0, < 16.08.0009 |
| Arubanetworks | 2540 | - |
Related Weaknesses (CWE)
References
- https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-007.txtVendor Advisory
- https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-007.txtVendor Advisory
FAQ
What is CVE-2019-5320?
CVE-2019-5320 is a vulnerability with a CVSS score of 6.1 (MEDIUM). Aruba Intelligent Edge Switch Series 2540, 2530, 2930F, 2930M, 2920, 5400R, and 3810M with firmware 16.08.* before 16.08.0009, 16.09.* before 16.09.0007, 16.10.* before 16.10.0003 are vulnerable to Cr...
How severe is CVE-2019-5320?
CVE-2019-5320 has been rated MEDIUM with a CVSS base score of 6.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-5320?
Check the references section above for vendor advisories and patch information. Affected products include: Arubanetworks 5400R Firmware, Arubanetworks 5400R, Arubanetworks 3810 Firmware, Arubanetworks 3810, Arubanetworks 2920 Firmware.