Details of VAR-201812-0630

ID

VAR-201812-0630

CVE

CVE-2018-7080

TITLE

Aruba Access point Vulnerabilities related to security functions

Trust: 0.8

sources: JVNDB: JVNDB-2018-014398

DESCRIPTION

A vulnerability exists in the firmware of embedded BLE radios that are part of some Aruba Access points. An attacker who is able to exploit the vulnerability could install new, potentially malicious firmware into the AP's BLE radio and could then gain access to the AP's console port. This vulnerability is applicable only if the BLE radio has been enabled in affected access points. The BLE radio is disabled by default. Note - Aruba products are NOT affected by a similar vulnerability being tracked as CVE-2018-16986. Aruba Access point Contains vulnerabilities related to security features.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Texas Instruments Bluetooth Low Energy Chips are prone to an remote code-execution vulnerability. Successfully exploiting this issue will allow an attackers to execute arbitrary code. Aruba AP-3xx and others are wireless access point devices of Aruba Networks

Trust: 1.98

sources: NVD: CVE-2018-7080 // JVNDB: JVNDB-2018-014398 // BID: 105814 // VULHUB: VHN-137112

AFFECTED PRODUCTS

vendor:	arubanetworks	model:	arubaos	scope:	lt	version:	8.2.2.2	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	lt	version:	8.3.0.4	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	gte	version:	6.5.3.0	Trust: 1.0
vendor:	arubanetworks	model:	203rp	scope:	eq	version:	-	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	gte	version:	6.4.4.0	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	lt	version:	6.5.4.9	Trust: 1.0
vendor:	arubanetworks	model:	203r	scope:	eq	version:	-	Trust: 1.0
vendor:	arubanetworks	model:	ap-300 series access points	scope:	eq	version:	-	Trust: 1.0
vendor:	arubanetworks	model:	ap-300 series instant access points	scope:	eq	version:	-	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	lt	version:	6.4.4.20	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	gte	version:	8.0.0.0	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	lt	version:	6.5.3.9	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	gte	version:	6.5.4.0	Trust: 1.0
vendor:	arubanetworks	model:	arubaos	scope:	gte	version:	8.3.0.0	Trust: 1.0
vendor:	aruba	model:	203r	scope:	-	version:	-	Trust: 0.8
vendor:	aruba	model:	203rp	scope:	-	version:	-	Trust: 0.8
vendor:	aruba	model:	300 series access points	scope:	-	version:	-	Trust: 0.8
vendor:	aruba	model:	instant ap	scope:	-	version:	-	Trust: 0.8
vendor:	aruba	model:	arubaos	scope:	-	version:	-	Trust: 0.8
vendor:	ti	model:	cc2650	scope:	eq	version:	0	Trust: 0.3
vendor:	ti	model:	cc2642r	scope:	eq	version:	0	Trust: 0.3
vendor:	ti	model:	cc2640r2f	scope:	eq	version:	0	Trust: 0.3
vendor:	ti	model:	cc2640	scope:	eq	version:	0	Trust: 0.3
vendor:	ti	model:	cc2541	scope:	eq	version:	0	Trust: 0.3
vendor:	ti	model:	cc2540	scope:	eq	version:	0	Trust: 0.3
vendor:	arubanetworks	model:	iap-3xx	scope:	eq	version:	0	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	8.3.0	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	8.1.0.4	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	8.1.0.3	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	8.0	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.5.4.2	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.5.4.1	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.5.4.0	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.5.3.3	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.5.3.2	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.5.3.0	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.4.4.16	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.4.4.15	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	eq	version:	6.4.4.0	Trust: 0.3
vendor:	arubanetworks	model:	ap-3xx	scope:	eq	version:	0	Trust: 0.3
vendor:	arubanetworks	model:	ap-203rp	scope:	eq	version:	0	Trust: 0.3
vendor:	arubanetworks	model:	ap-203r	scope:	eq	version:	0	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	ne	version:	8.3.0.4	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	ne	version:	8.2.2.2	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	ne	version:	6.5.4.9	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	ne	version:	6.5.3.9	Trust: 0.3
vendor:	arubanetworks	model:	arubaos	scope:	ne	version:	6.4.4.20	Trust: 0.3

sources: BID: 105814 // JVNDB: JVNDB-2018-014398 // NVD: CVE-2018-7080

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-7080
value:	HIGH
Trust: 1.0
NVD:	CVE-2018-7080
value:	HIGH
Trust: 0.8
CNNVD:	CNNVD-201811-090
value:	HIGH
Trust: 0.6
VULHUB:	VHN-137112
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2018-7080
severity:	MEDIUM
baseScore:	5.4
vectorString:	AV:A/AC:M/AU:N/C:P/I:P/A:P
accessVector:	ADJACENT_NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	5.5
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-137112
severity:	MEDIUM
baseScore:	5.4
vectorString:	AV:A/AC:M/AU:N/C:P/I:P/A:P
accessVector:	ADJACENT_NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	5.5
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-7080
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	ADJACENT
attackComplexity:	HIGH
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	1.6
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-137112 // JVNDB: JVNDB-2018-014398 // CNNVD: CNNVD-201811-090 // NVD: CVE-2018-7080

PROBLEMTYPE DATA

problemtype:	NVD-CWE-noinfo	Trust: 1.0
problemtype:	CWE-254	Trust: 0.9

sources: VULHUB: VHN-137112 // JVNDB: JVNDB-2018-014398 // NVD: CVE-2018-7080

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-201811-090

TYPE

security feature problem

Trust: 0.6

sources: CNNVD: CNNVD-201811-090

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-014398

PATCH

title:	ARUBA-PSA-2018-006	url:	https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2018-006.txt	Trust: 0.8
title:	Texas Instruments Bluetooth Low Energy Chips Enter the fix for the verification vulnerability	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=86610	Trust: 0.6

sources: JVNDB: JVNDB-2018-014398 // CNNVD: CNNVD-201811-090

EXTERNAL IDS

db:	NVD	id:	CVE-2018-7080	Trust: 2.8
db:	BID	id:	105814	Trust: 2.0
db:	JVNDB	id:	JVNDB-2018-014398	Trust: 0.8
db:	CNNVD	id:	CNNVD-201811-090	Trust: 0.7
db:	VULHUB	id:	VHN-137112	Trust: 0.1

sources: VULHUB: VHN-137112 // BID: 105814 // JVNDB: JVNDB-2018-014398 // CNNVD: CNNVD-201811-090 // NVD: CVE-2018-7080

REFERENCES

url:	https://www.arubanetworks.com/assets/alert/aruba-psa-2018-006.txt	Trust: 2.0
url:	http://www.securityfocus.com/bid/105814	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-7080	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-7080	Trust: 0.8
url:	http://www.arubanetworks.com/	Trust: 0.3
url:	http://www.ti.com/	Trust: 0.3
url:	https://armis.com/bleedingbit/	Trust: 0.3

sources: VULHUB: VHN-137112 // BID: 105814 // JVNDB: JVNDB-2018-014398 // CNNVD: CNNVD-201811-090 // NVD: CVE-2018-7080

CREDITS

Armis

Trust: 0.9

sources: BID: 105814 // CNNVD: CNNVD-201811-090

SOURCES

db:	VULHUB	id:	VHN-137112
db:	BID	id:	105814
db:	JVNDB	id:	JVNDB-2018-014398
db:	CNNVD	id:	CNNVD-201811-090
db:	NVD	id:	CVE-2018-7080

LAST UPDATE DATE

2024-11-23T22:30:10.495000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-137112	date:	2020-08-24T00:00:00
db:	BID	id:	105814	date:	2018-11-01T00:00:00
db:	JVNDB	id:	JVNDB-2018-014398	date:	2019-03-19T00:00:00
db:	CNNVD	id:	CNNVD-201811-090	date:	2020-08-25T00:00:00
db:	NVD	id:	CVE-2018-7080	date:	2024-11-21T04:11:37.020

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-137112	date:	2018-12-07T00:00:00
db:	BID	id:	105814	date:	2018-11-01T00:00:00
db:	JVNDB	id:	JVNDB-2018-014398	date:	2019-03-19T00:00:00
db:	CNNVD	id:	CNNVD-201811-090	date:	2018-11-06T00:00:00
db:	NVD	id:	CVE-2018-7080	date:	2018-12-07T21:29:01.390