Vulnerabilities > Arubanetworks > Airwave > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-10-17 | CVE-2023-4896 | Unspecified vulnerability in Arubanetworks Airwave A vulnerability exists which allows an authenticated attacker to access sensitive information on the AirWave Management Platform web-based management interface. | 6.5 |
| 2021-08-26 | CVE-2021-37715 | Cross-site Scripting vulnerability in Arubanetworks Airwave A remote cross-site scripting (XSS) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.13.0. | 4.8 |
| 2021-04-29 | CVE-2021-29137 | Open Redirect vulnerability in Arubanetworks Airwave A remote URL redirection vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. | 6.1 |
| 2021-04-28 | CVE-2021-25164 | XXE vulnerability in Arubanetworks Airwave A remote XML external entity vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. | 6.5 |
| 2021-03-05 | CVE-2021-26971 | Unspecified vulnerability in Arubanetworks Airwave A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.3 |
| 2021-03-05 | CVE-2021-26970 | OS Command Injection vulnerability in Arubanetworks Airwave A remote authenticated arbitrary command execution vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.3 |
| 2021-03-05 | CVE-2021-26969 | XXE vulnerability in Arubanetworks Airwave A remote authenticated authenticated xml external entity (xxe) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.5 |
| 2021-03-05 | CVE-2021-26968 | Cross-site Scripting vulnerability in Arubanetworks Airwave A remote authenticated stored cross-site scripting (xss) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 4.8 |
| 2021-03-05 | CVE-2021-26967 | Cross-site Scripting vulnerability in Arubanetworks Airwave A remote reflected cross-site scripting (xss) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.1 |
| 2021-03-05 | CVE-2021-26966 | SQL Injection vulnerability in Arubanetworks Airwave A remote authenticated sql injection vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. | 6.5 |