Vulnerabilities > Arubanetworks > Airwave Glass > 1.2.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-01-15 | CVE-2020-24641 | Server-Side Request Forgery (SSRF) vulnerability in Arubanetworks Airwave Glass In Aruba AirWave Glass before 1.3.3, there is a Server-Side Request Forgery vulnerability through an unauthenticated endpoint that if successfully exploited can result in disclosure of sensitive information. | 5.0 |
| 2021-01-15 | CVE-2020-24640 | Unspecified vulnerability in Arubanetworks Airwave Glass There is a vulnerability caused by insufficient input validation that allows for arbitrary command execution in a containerized environment within Airwave Glass before 1.3.3. | 10.0 |
| 2021-01-15 | CVE-2020-24639 | Deserialization of Untrusted Data vulnerability in Arubanetworks Airwave Glass There is a vulnerability caused by unsafe Java deserialization that allows for arbitrary command execution in a containerized environment within Airwave Glass before 1.3.3. | 10.0 |
| 2021-01-15 | CVE-2020-24638 | Unspecified vulnerability in Arubanetworks Airwave Glass Multiple authenticated remote command executions are possible in Airwave Glass before 1.3.3 via the glassadmin cli. | 9.0 |
| 2020-11-04 | CVE-2020-7129 | Command Injection vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 9.0 |
| 2020-11-04 | CVE-2020-7128 | Command Injection vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 10.0 |
| 2020-10-26 | CVE-2020-7127 | Unspecified vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 7.5 |
| 2020-10-26 | CVE-2020-7126 | Server-Side Request Forgery (SSRF) vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote server-side request forgery (ssrf) vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 5.0 |
| 2020-10-26 | CVE-2020-7125 | Improper Privilege Management vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote escalation of privilege vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 6.5 |
| 2020-10-26 | CVE-2020-7124 | Missing Authorization vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1 A remote unauthorized access vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2. | 7.5 |