Vulnerabilities > Arubanetworks > Arubaos > 8.6.0.5
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-05 | CVE-2023-35978 | Cross-site Scripting vulnerability in Arubanetworks Arubaos A vulnerability in ArubaOS could allow an unauthenticated remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface. | 6.1 |
| 2023-07-05 | CVE-2023-35979 | Classic Buffer Overflow vulnerability in Arubanetworks Arubaos There is an unauthenticated buffer overflow vulnerability in the process controlling the ArubaOS web-based management interface. | 7.5 |
| 2023-03-01 | CVE-2023-22747 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22748 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22749 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22750 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22751 | Out-of-bounds Write vulnerability in Arubanetworks Arubaos and Sd-Wan There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22752 | Out-of-bounds Write vulnerability in Arubanetworks Arubaos and Sd-Wan There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22753 | Classic Buffer Overflow vulnerability in Arubanetworks Arubaos and Sd-Wan There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. | 9.8 |
| 2023-03-01 | CVE-2023-22754 | Classic Buffer Overflow vulnerability in Arubanetworks Arubaos and Sd-Wan There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. | 9.8 |