Vulnerabilities > Arubanetworks > Airwave > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-05 | CVE-2015-2201 | OS Command Injection vulnerability in multiple products Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows VisualRF remote OS command execution and file disclosure by administrative users. | 7.2 |
| 2023-09-05 | CVE-2015-2202 | Improper Input Validation vulnerability in multiple products Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows administrative users to escalate privileges to root on the underlying OS. | 7.2 |
| 2022-12-08 | CVE-2022-37916 | Unspecified vulnerability in Arubanetworks Airwave Vulnerabilities in the AirWave Management Platform web-based management interface exist which expose some URLs to a lack of proper access controls. | 8.1 |
| 2022-12-08 | CVE-2022-37917 | Unspecified vulnerability in Arubanetworks Airwave Vulnerabilities in the AirWave Management Platform web-based management interface exist which expose some URLs to a lack of proper access controls. | 8.1 |
| 2022-12-08 | CVE-2022-37918 | Unspecified vulnerability in Arubanetworks Airwave Vulnerabilities in the AirWave Management Platform web-based management interface exist which expose some URLs to a lack of proper access controls. | 8.1 |