Vulnerabilities > Arubanetworks > Arubaos > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-01 | CVE-2023-22753 | Classic Buffer Overflow vulnerability in Arubanetworks Arubaos and Sd-Wan There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. | 9.8 |
| 2023-03-01 | CVE-2023-22752 | Out-of-bounds Write vulnerability in Arubanetworks Arubaos and Sd-Wan There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22751 | Out-of-bounds Write vulnerability in Arubanetworks Arubaos and Sd-Wan There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22750 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22749 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22748 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2023-03-01 | CVE-2023-22747 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). | 9.8 |
| 2022-12-12 | CVE-2022-37897 | OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan There is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211). | 9.8 |
| 2022-10-07 | CVE-2022-37891 | Classic Buffer Overflow vulnerability in multiple products Unauthenticated buffer overflow vulnerabilities exist within the Aruba InstantOS and ArubaOS 10 web management interface. | 9.8 |
| 2022-10-07 | CVE-2022-37890 | Classic Buffer Overflow vulnerability in multiple products Unauthenticated buffer overflow vulnerabilities exist within the Aruba InstantOS and ArubaOS 10 web management interface. | 9.8 |