CVE-2020-7122

Name of the Vulnerable Software and Affected Versions Aruba CX Switches Series versions prior to 10.04.1000

Description The issue is related to memory corruption vulnerabilities in the Aruba CX Switches Series, which could result in Local Denial of Service of the CDP process in the switch. Successful exploitation of these vulnerabilities could be achieved through buffer overflow. The estimated number of potentially affected devices worldwide is not provided. There is no information about real-world incidents where this issue was exploited.

Recommendations For versions prior to 10.04.1000, update the firmware to version 10.04.1000 or later to resolve the issue. As a temporary workaround, consider restricting access to the CDP process to minimize the risk of exploitation.