CVE

Id
37140  
CVE No.
CVE-2008-7023  
Status
Candidate  
Description
Aruba Mobility Controller running ArubaOS 3.3.1.16, and possibly other versions, installs the same default X.509 certificate for all installations, which allows remote attackers to bypass authentication. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product"s security documentation.  
Phase
Assigned (20090821)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
403475 37140 CVE-2008-7023 BUGTRAQ:20080923 Aruba Mobility Controller Shared Default Certificate  View
403476 37140 CVE-2008-7023 URL:http://www.securityfocus.com/archive/1/archive/1/496604/100/0/threaded  View
403477 37140 CVE-2008-7023 BUGTRAQ:20080923 Re: Aruba Mobility Controller Shared Default Certificate - Response from Aruba Networks  View
403478 37140 CVE-2008-7023 URL:http://www.securityfocus.com/archive/1/archive/1/496622/100/0/threaded  View
403479 37140 CVE-2008-7023 BID:31336  View
403480 37140 CVE-2008-7023 URL:http://www.securityfocus.com/bid/31336  View
403481 37140 CVE-2008-7023 OSVDB:51731  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
43331 JVNDB-2009-004338 Libra File Manager における権限を取得される脆弱性 Libra File Manager には、認証を回避される、および権限を取得される脆弱性が存在します。 CVE-2008-7027 37140 7.5 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-004338.html  View