Vulnerabilities > CVE-2023-30510 - Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

LOW

Integrity impact

NONE

Availability impact

NONE

network

low complexity

arubanetworks

NVD

Published: 2023-05-16

Updated: 2023-07-07

Summary

A vulnerability exists in the Aruba EdgeConnect Enterprise web management interface that allows remote authenticated users to issue arbitrary URL requests from the Aruba EdgeConnect Enterprise instance. The impact of this vulnerability is limited to a subset of URLs which can result in the possible disclosure of data due to the network position of the Aruba EdgeConnect Enterprise instance.

Vulnerable Configurations

Part	Description	Count
Application	Arubanetworks Arubanetworks Edgeconnect Enterprise *	1

References

https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-007.txt