CVE-2020-7121
HIGHAruba CX 6200F/6300/6400/8320/8325/8400 < 10.04.3021 - Local DoS via LLDP Memory Corruption
Title source: llmDescription
Two memory corruption vulnerabilities in the Aruba CX Switches Series 6200F, 6300, 6400, 8320, 8325, and 8400 have been found. Successful exploitation of these vulnerabilities could result in Local Denial of Service of the LLDP (Link Layer Discovery Protocol) process in the switch. This applies to firmware versions prior to 10.04.3021.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_misc
https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2020-009.txt
Scores
CVSS v3
7.5
EPSS
0.0035
EPSS Percentile
57.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-787
Status
published
Products (6)
arubanetworks/cx_6200f_firmware
< 10.04.3021
arubanetworks/cx_6300_firmware
< 10.04.3021
arubanetworks/cx_6400_firmware
< 10.04.3021
arubanetworks/cx_8320_firmware
< 10.04.3021
arubanetworks/cx_8325_firmware
< 10.04.3021
arubanetworks/cx_8400_firmware
< 10.04.3021
Published
Sep 23, 2020
Tracked Since
Feb 18, 2026