An authenticated remote attacker could exploit a vulnerability in the web-based management interface of an AOS-10 Gateway to access sensitive files on the underlying operating system. This could lead to the disclosure of confidential system information, potentially facilitating further attacks against the affected device.
Successful exploitation could result in unauthorized access to files on the operating system, allowing for the disclosure of sensitive system information.
To address this vulnerability, HPE Aruba Networking recommends upgrading to AOS-10.8.0.1 and above. Instructions for downloading the update are available on the HPE Networking Support Portal.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
