Vulnerabilities > Arubanetworks > Airwave Glass > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-01-15 CVE-2020-24641 Server-Side Request Forgery (SSRF) vulnerability in Arubanetworks Airwave Glass
In Aruba AirWave Glass before 1.3.3, there is a Server-Side Request Forgery vulnerability through an unauthenticated endpoint that if successfully exploited can result in disclosure of sensitive information.
network
low complexity
arubanetworks CWE-918
5.0
5.0
2020-10-26 CVE-2020-7126 Server-Side Request Forgery (SSRF) vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1
A remote server-side request forgery (ssrf) vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.
network
low complexity
arubanetworks CWE-918
5.0
5.0
2020-10-26 CVE-2020-7125 Improper Privilege Management vulnerability in Arubanetworks Airwave Glass 1.2.1/1.3.0/1.3.1
A remote escalation of privilege vulnerability was discovered in Aruba Airwave Software version(s): Prior to 1.3.2.
network
low complexity
arubanetworks CWE-269
6.5
6.5