CVE-2022-23678

Summary

A vulnerability in the Aruba Virtual Intranet Access (VIA) client for Microsoft Windows operating system client communications that could allow for an attacker in a privileged network position to intercept sensitive information in Aruba Virtual Intranet Access (VIA) client for Microsoft Windows operating system versions: 4.3.0 build 2208101 and below. Aruba has released upgrades for Virtual Intranet Access (VIA) Client that address this security vulnerability.

Affected Software

VendorProductVersion RangeStatus
n/aAruba Virtual Intranet Access (VIA)Windows Client Only - All versions lower than VIA 4.3.0 build 2208101affected

Weaknesses

  • remote disclosure of sensitive information

ADP Enrichment

CVE Program Container

Additional References

References