Skip to main content

Aruba Virtual Intranet Access

3 CVEs product

Monthly

CVE-2023-38402 HIGH This Week

A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow malicious users to overwrite arbitrary files as NT AUTHORITY\SYSTEM. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Aruba Microsoft Aruba Virtual Intranet Access
NVD
CVSS 3.1
7.1
EPSS
0.2%
CVE-2023-38401 HIGH This Week

A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow local users to elevate privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Aruba Aruba Virtual Intranet Access
NVD
CVSS 3.1
7.8
EPSS
0.2%
CVE-2022-23678 MEDIUM This Month

A vulnerability in the Aruba Virtual Intranet Access (VIA) client for Microsoft Windows operating system client communications that could allow for an attacker in a privileged network position to. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Microsoft Information Disclosure Aruba Aruba Virtual Intranet Access
NVD
CVSS 3.1
5.9
EPSS
0.8%
EPSS 0% CVSS 7.1
HIGH This Week

A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow malicious users to overwrite arbitrary files as NT AUTHORITY\SYSTEM. Rated high severity (CVSS 7.1), this vulnerability is low attack complexity. No vendor patch available.

Information Disclosure Aruba Microsoft +1
NVD
EPSS 0% CVSS 7.8
HIGH This Week

A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow local users to elevate privileges. Rated high severity (CVSS 7.8), this vulnerability is low attack complexity. No vendor patch available.

RCE Aruba Aruba Virtual Intranet Access
NVD
EPSS 1% CVSS 5.9
MEDIUM This Month

A vulnerability in the Aruba Virtual Intranet Access (VIA) client for Microsoft Windows operating system client communications that could allow for an attacker in a privileged network position to. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Microsoft Information Disclosure Aruba +1
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy