CVE-2023-38402

Name of the Vulnerable Software and Affected Versions HPE Aruba Networking Virtual Intranet Access (VIA) client (affected versions not specified)

Description A vulnerability in the HPE Aruba Networking Virtual Intranet Access (VIA) client could allow malicious users to overwrite arbitrary files as NT AUTHORITYSYSTEM. A successful exploit could allow these malicious users to create a Denial-of-Service (DoS) condition affecting the Microsoft Windows operating System boot process. The vulnerability is related to insufficient access control.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.