Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

TLStorm 2.0 impacts Aruba and Avaya Network Switches


By MYBRANDBOOK


TLStorm 2.0 impacts Aruba and Avaya Network Switches

Cybersecurity researchers have found as many as five severe security flaws in the implementation of TLS protocol in several models of Aruba and Avaya network switches that could be exploited to gain remote access to enterprise networks and steal valuable information.

 

The findings follow the March disclosure of TLStorm, a set of three critical flaws in APC Smart-UPS devices that could permit an attacker to take over control and physically damage the appliances. Dubbed as TLStorm 2.0, the new set of flaws provide Aruba and Avaya network switches vulnerable to remote code execution vulnerabilities.

 

Affected devices include Avaya ERS3500 Series, ERS3600 Series, ERS4900 Series, and ERS5900 Series as well as Aruba 5400R Series, 3810 Series, 2920 Series, 2930F Series, 2930M Series, 2530 Series, and 2540 Series.

 

It enables the attacker to seize the devices, move laterally across the network, and leak sensitive data. The vulnerabilities found in Avaya switches are zero-click, meaning they can be activated via unauthenticated network packets without any user interaction, which is even more concerning.

 

The list of bugs is as follows -

· CVE-2022-23676 - Two memory corruption vulnerabilities in the RADIUS client implementation of Aruba switches

· CVE-2022-23677 - NanoSSL misuse on multiple interfaces in Aruba switches

· CVE-2022-29860 - TLS reassembly heap overflow vulnerability in Avaya switches

· CVE-2022-29861 - HTTP header parsing stack overflow vulnerability in Avaya switches

· HTTP POST request handling heap overflow vulnerability in a discontinued Avaya product line

 

Organizations deploying impacted Avaya and Aruba devices are highly recommended to apply the patches to alleviate any potential exploit attempts.
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

Modernize the IT Strategy To Navigate COVID-19 and Beyond
Digital dividends becomes a challenge to the digital divides.
The dangers of phishing are becoming Top Concern for the CEOs
Waiting For A Cybersecurity disaster to happen
We have to continue our efforts to drive the country
 INTERVIEWS  Placeholder image
Bolstering its commitment to help build a truly self-reliant B

Bolstering its commitment to help build a truly self-reliant B

Autodesk continually pushing the boundaries in the Design and

Autodesk continually pushing the boundaries in the Design and

Autodesk’s vision is of a better world designed and made for all. It inte
AMD Pensando driving innovation in the DPU architecture space

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando stands out in the DPU (Data Processing Unit) market with its u
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
VEHERE INTERACTIVE PVT. LTD.

VEHERE INTERACTIVE PVT. LTD.


INFOSYS TECHNOLOGIES PVT. LTD.

INFOSYS TECHNOLOGIES PVT. LTD.


ZOHO CORPORATION PVT. LTD.

ZOHO CORPORATION PVT. LTD.


PDRL - Passenger Drone Research Pvt. Ltd.

PDRL - Passenger Drone Research Pvt. Ltd.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

AI AND DATA ANALYTICS REVOLUTIONIZING HEALTHCARE SERVICES

...

STRATEGIC FRAMEWORK FOR SUSTAINABLE BUSINESS EXPANSION IS PATHWAY TO PROSPERITY

Accelerate the adoption of AI and machine learning...

AI TO IMPROVE INSIGHTS THROUGH AUGMENTED ANALYTICS, WHILE EDGE COMPUTING TO ALLOW REAL-TIME PROCESSING

For the fiscal year 2024-25, our organization has ...

 ICONS OF INDIA  Placeholder image

Icons Of India : Anil Kumar Lahoti

Anil Kumar Lahoti, Chairman, Telecom Regulatory Authority of India (TR...

ICONS OF INDIA : VINAY SINHA

Vinay Sinha is the Managing Director of Sales for the India Mega Regio...

ICONS OF INDIA : SANTHOSH VISWANATHAN

Santhosh Viswanathan is the the Vice President and Managing Director f...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Investing in Innovation and Maintaining High Service Standards To Fortify its Brand Position

The rise of digital technology and cloud computing is a huge growth driver for...

Unwavering Commitment & Communication helping to thrive in the evolving digital landscape

We leverage a comprehensive market intelligence framework and an advanced CRM ...

Iris Global Services - “The Most Responsive Distributor”

As a company, Iris Global Services is equipped with everything it takes to set...

 PSU  Placeholder image

ECIL - Electronics Corporation of India Limited

ECIL is distinguished by its diverse technological capabilities and it...

TCIL - Telecommunications Consultants India Limited  

TCIL is a government-owned engineering and consultancy company...

NSE - National Stock Exchange  

NSE is the leading stock exchange in India....

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024 : TECH MAHINDRA

Tech Mahindra positions itself as a company that goes beyond just technology, ...

Most Trusted Brands 2024 : Redington Ltd. 

Redington positions itself as a bridge between global technology brands and re...

Most Trusted Brands 2024: TATA CONSULTANCY SERVICES LTD. (TCS)

TCS, a global leader in IT services, consulting, and business solutions, has b...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - Anirudh Devgan , President, Cadence Design

Anirudh Devgan, the Global President and CEO of Cadence Design Systems...

Indian Tech Talent Excelling The Tech World - Dheeraj Pandey, CEO, DevRev

Dheeraj Pandey, Co-founder and CEO at DevRev , has a remarkable journe...

Indian Tech Talent Excelling The Tech World - RAVI KUMAR S, CEO- Cognizant

Ravi Kumar S, appointed as CEO of Cognizant in January 2023, sets the ...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

Can eSIM protect SIM swap frauds in India?

Can eSIM protect SIM swap frauds in India?

AWS Announces Availability of Amazon WorkSpaces in Mumbai

AWS Announces Availability of Amazon WorkSpaces in Mumbai

Delhi & NCR Vi customers to enjoy stronger indoor 4G connectivity

Delhi & NCR Vi customers to enjoy stronger indoor 4G connectivity

Quicker adoption of digital technologies is good for the Indian economy

Quicker adoption of digital technologies is good for the Indian economy

 UNICORNS REVOLUTIONISING Placeholder image

MakeMyTrip Limited

MakeMyTrip Limited

Hella Infra Market Private Limited

Hella Infra Market Private Limited

LICIOUS

LICIOUS

GUPSHUP TECHNOLOGY INDIA PRIVATE LIMITED

GUPSHUP TECHNOLOGY INDIA PRIVATE LIMITED


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW