Vulnerabilities > Arubanetworks

DATE CVE VULNERABILITY TITLE RISK
2024-08-06 CVE-2024-42398 Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
5.3
2024-08-06 CVE-2024-42399 Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
5.3
2024-08-06 CVE-2024-42400 Multiple unauthenticated Denial-of-Service (DoS) vulnerabilities exist in the Soft AP daemon accessed via the PAPI protocol.
network
low complexity
arubanetworks hp
5.3
2024-08-06 CVE-2024-42393 Out-of-bounds Write vulnerability in multiple products
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack.
network
low complexity
hp arubanetworks CWE-787
critical
9.8
2024-08-06 CVE-2024-42394 Out-of-bounds Write vulnerability in multiple products
There are vulnerabilities in the Soft AP Daemon Service which could allow a threat actor to execute an unauthenticated RCE attack.
network
low complexity
hp arubanetworks CWE-787
critical
9.8
2024-08-06 CVE-2024-42395 Out-of-bounds Write vulnerability in multiple products
There is a vulnerability in the AP Certificate Management Service which could allow a threat actor to execute an unauthenticated RCE attack.
network
low complexity
hp arubanetworks CWE-787
critical
9.8
2024-07-30 CVE-2024-41916 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability exists in ClearPass Policy Manager that allows for an attacker with administrative privileges to access sensitive information in a cleartext format.
network
low complexity
arubanetworks
4.9
2024-07-30 CVE-2024-5486 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability exists in ClearPass Policy Manager that allows for an attacker with administrative privileges to access sensitive information in a cleartext format.
network
low complexity
arubanetworks
4.9
2024-07-24 CVE-2024-41136 OS Command Injection vulnerability in Arubanetworks Edgeconnect Sd-Wan Orchestrator
An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateways Command Line Interface.
network
low complexity
arubanetworks CWE-78
8.8
2024-07-24 CVE-2024-22444 Cross-site Scripting vulnerability in Arubanetworks Edgeconnect Sd-Wan Orchestrator
A vulnerability within the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface.
network
low complexity
arubanetworks CWE-79
6.1