Vulnerabilities > Arubanetworks > Airwave > 7.7.8
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-05 | CVE-2021-26969 | XXE vulnerability in Arubanetworks Airwave A remote authenticated authenticated xml external entity (xxe) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 5.5 |
| 2021-03-05 | CVE-2021-26968 | Cross-site Scripting vulnerability in Arubanetworks Airwave A remote authenticated stored cross-site scripting (xss) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 3.5 |
| 2021-03-05 | CVE-2021-26967 | Cross-site Scripting vulnerability in Arubanetworks Airwave A remote reflected cross-site scripting (xss) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 4.3 |
| 2021-03-05 | CVE-2021-26966 | SQL Injection vulnerability in Arubanetworks Airwave A remote authenticated sql injection vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 5.5 |
| 2021-03-05 | CVE-2021-26965 | SQL Injection vulnerability in Arubanetworks Airwave A remote authenticated sql injection vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 5.5 |
| 2021-03-05 | CVE-2021-26964 | Incorrect Authorization vulnerability in Arubanetworks Airwave A remote authentication restriction bypass vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 5.5 |
| 2021-03-05 | CVE-2021-26963 | Unspecified vulnerability in Arubanetworks Airwave A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 9.0 |
| 2021-03-05 | CVE-2021-26962 | Command Injection vulnerability in Arubanetworks Airwave A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 9.0 |
| 2021-03-05 | CVE-2021-26961 | Cross-Site Request Forgery (CSRF) vulnerability in Arubanetworks Airwave A remote unauthenticated cross-site request forgery (csrf) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.8 |
| 2021-03-05 | CVE-2021-26960 | Cross-Site Request Forgery (CSRF) vulnerability in Arubanetworks Airwave A remote unauthenticated cross-site request forgery (csrf) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.8 |