Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

TLStorm 2.0 impacts Aruba and Avaya Network Switches


By MYBRANDBOOK


TLStorm 2.0 impacts Aruba and Avaya Network Switches

Cybersecurity researchers have found as many as five severe security flaws in the implementation of TLS protocol in several models of Aruba and Avaya network switches that could be exploited to gain remote access to enterprise networks and steal valuable information.

 

The findings follow the March disclosure of TLStorm, a set of three critical flaws in APC Smart-UPS devices that could permit an attacker to take over control and physically damage the appliances. Dubbed as TLStorm 2.0, the new set of flaws provide Aruba and Avaya network switches vulnerable to remote code execution vulnerabilities.

 

Affected devices include Avaya ERS3500 Series, ERS3600 Series, ERS4900 Series, and ERS5900 Series as well as Aruba 5400R Series, 3810 Series, 2920 Series, 2930F Series, 2930M Series, 2530 Series, and 2540 Series.

 

It enables the attacker to seize the devices, move laterally across the network, and leak sensitive data. The vulnerabilities found in Avaya switches are zero-click, meaning they can be activated via unauthenticated network packets without any user interaction, which is even more concerning.

 

The list of bugs is as follows -

· CVE-2022-23676 - Two memory corruption vulnerabilities in the RADIUS client implementation of Aruba switches

· CVE-2022-23677 - NanoSSL misuse on multiple interfaces in Aruba switches

· CVE-2022-29860 - TLS reassembly heap overflow vulnerability in Avaya switches

· CVE-2022-29861 - HTTP header parsing stack overflow vulnerability in Avaya switches

· HTTP POST request handling heap overflow vulnerability in a discontinued Avaya product line

 

Organizations deploying impacted Avaya and Aruba devices are highly recommended to apply the patches to alleviate any potential exploit attempts.
 BREAKING NEWS  BREAKING NEWS
India-Made Micron Semiconductor Chips Are About To Enter Internat

India-Made Micron Semiconductor Chips Are About To Enter Internat...

In the first half of2025, the semiconductor packaging division of Micron T...

Indian startup OneAIChat announces unified interface for leading

Indian startup OneAIChat announces unified interface for leading ...

An Indian startup, OneAIChat has built a multi-modal AI aggregator to sav...

TCS and AWS to accelerate customers’ cloud migration and offer

TCS and AWS to accelerate customers’ cloud migration and offer ...

Tata Consultancy Services has forged a strategic alliance with Amazon Web...

ESET provides enhanced enterprise security through a newly develo

ESET provides enhanced enterprise security through a newly develo...

ESET is pleased to present the ESET Mobile Threat Defence module (EMTD) ...

 TECHNO TRENDS  Placeholder image
Microsoft to build a new data centre to support Thailand's tec

Microsoft to build a new data centre to support Thailand's tec

Microsoft has revealed intentions to construct a regional data centre as w...

SAP launches cloud services to help Indian scaleups innovate m

SAP launches cloud services to help Indian scaleups innovate m

SAP at SAP unveils now "GROW with SAP for Scaleups," a new cloud service d...

Denodo and Sonata form alliance to unlock data-to-value creati

Denodo and Sonata form alliance to unlock data-to-value creati

Denodo and Sonata Information Technology India Limited (SITL) have annou...

Google Play Store will now let users download two apps simulta

Google Play Store will now let users download two apps simulta

Google Play Store now lets users download two apps simultaneously. While a...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
Salman Khan trolled for singing with B Praak at Anant Ambani's

Salman Khan trolled for singing with B Praak at Anant Ambani's

To celebrate Mukesh Ambani's youngest son Anant Ambani’s 29th birthday

 MOVERS & SHAKERS  Placeholder image
UiPath ropes in Raghu Malpani as Chief Technology Officer

UiPath ropes in Raghu Malpani as Chief Technology Officer

DigiCert names Atri Chatterjee as CMO

DigiCert names Atri Chatterjee as CMO

DigiCert has announced the appointment of Atri Chatterjee as Chief Market
Amagi names its Chief Product Officer

Amagi names its Chief Product Officer

Amagi announced the appointment of Richard Perkett as its Chief Product Of
 OPEN YOUR EYES  Placeholder image

Tools and technologies are being used for Remote Work and Collaboration Teams
The demand for touch-less services are on huge demand
Building of a secure infrastructure is highly essential to stop malicious activity
The Security Threat is looming the BFSI Segments
Growing cyberattacks is a raising concern ,it’s time to evaluate cloud-first strategy
 INTERVIEWS  Placeholder image
ETEK building a cybersecurity aware community

ETEK building a cybersecurity aware community

AMD Pensando innovation CONTINUES

AMD Pensando innovation CONTINUES

In 2022, AMD announced its acquisition of Pensando Systems, an addition to

Committed to follow future roadmap with 'Make-in-India' 2.0 Vi

Committed to follow future roadmap with 'Make-in-India' 2.0 Vi

As technology advances, AI is used in increasingly disparate ways to help a
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
CP PLUS INDIA PVT. LTD.

CP PLUS INDIA PVT. LTD.


TAC SECURITY SOLUTIONS 

TAC SECURITY SOLUTIONS 


VERSA NETWORKS INDIA PVT. LTD.  

VERSA NETWORKS INDIA PVT. LTD.  


FRESHWORKS TECHNOLOGIES PVT. LTD.

FRESHWORKS TECHNOLOGIES PVT. LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Innovative technologies driving the Insurtech ecosystem to the next level

As an insurtech or digital company, we are taking ...

Prioritizing initiatives with strategic objectives, delivering measurable benefits

As a technology leader, I am always looking to ado...

Implementing various IT enablement initiatives to enable business continuity

In 2023-24, we will continue to work on making all...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Dr. P D Vaghela

Dr PD Vaghela serves as the Chairperson of Telecommunications Regulato...

Technology Icons Of India 2023: Lt Gen (Dr.) Rajesh Pant (Retd.)

LT Gen(Dr.) Rajesh Panth (Retd.), National cyber security coordination...

Technology Icons Of India 2023: Deepinder Goyal

Deepinder Goyal is the Founder and CEO of Zomato. Deepinder, or Deepi,...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Customer Satisfaction is Sound Solutions’ Foundation for Success and Resilience

India is a very big market with a variety of segments like SME, Corporate, Gov...

Symmetrix Empowering Collaboration between OEMs, Customers, and SMEs for Seamless Project Execution and Growth

A robust support system exists that fosters seamless communication and collabo...

Staying abreast with the latest technologies in this Digital age is the mantra to unlock business opportunities

The IT industry in India is witnessing a significant shift towards digital tra...

 PSU  Placeholder image

CERT-IN protecting the cyber security space of India

CERT-In serves in the area of cyber security threats like hacking and ...

CSCs enabling rural India digitally empowered  

Common service centres (CSCs) are digital access points under the Digi...

BSE provides highly secure, efficient and transparent market for trading  

BSE (formerly known as Bombay Stock Exchange Ltd.) is Asia's first & t...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : Tech Mahindra Limited

Tech Mahindra is focused on leveraging next-generation technologies including ...

Most Trusted Brands 2023 : Intel Technology India Pvt. Ltd.

Intel has unique assets and a strong, open ecosystem that gives Intel a compe...

Most Trusted Brands 2023 : Nvidia Graphics Pvt. Ltd.

NVIDIA GPUs offer a wide range of features that are specifically designed to a...

 Value-Added Distribution  Value-Added Distribution

ADITYA INFOTECH LTD.

Aditya Infotech Ltd. (AIL) – the technology arm of Aditya Group, is ...

SAVEX TECHNOLOGIES PVT. LTD.

Savex Technologies is the 3rd largest Information & Communication Tec...

RAH INFOTECH

RAH Infotech is India’s fastest growing technology value added dist...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

HCLTech identifies AI, multi-cloud, quantum computing and sustainability applications as key drivers of digital transformation in 2023

HCLTech identifies AI, multi-cloud, quantum computing and sustainability applications as key drivers of digital transformation in 2023

AVer and Barco Establish Technology Partnership to Enable Unified Collaboration

AVer and Barco Establish Technology Partnership to Enable Unified Collaboration

Impacts of AI on cybersecurity

Impacts of AI on cybersecurity

Apple iPhone entering the market with aggressive pricing strategy

Apple iPhone entering the market with aggressive pricing strategy

 UNICORNS REVOLUTIONISING Placeholder image

Coforge Limited

Coforge Limited

Nextbillion Technology Private Limited

Nextbillion Technology Private Limited

Info Edge (India) Limited

Info Edge (India) Limited

Citiustech Healthcare Technology Private Limited

Citiustech Healthcare Technology Private Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW