发布于3月6日3月6日 Members Aruba AOS-8: CVE-2023-22771: Insufficient Session Expiration in ArubaOS Command Line Interface Severity 8 CVSS (AV:N/AC:L/Au:M/C:C/I:C/A:C) Published 02/28/2023 Created 01/16/2025 Added 01/14/2025 Modified 02/04/2025 Description An insufficient session expiration vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability allows an attacker to keep a session running on an affected device after the removal of impacted account. Solution(s) aruba-aos-8-cve-2023-22771 References https://attackerkb.com/topics/cve-2023-22771 CVE - 2023-22771 https://csaf.arubanetworks.com/2023/hpe_aruba_networking_-_2023-002.json
