Vulnerabilities > Arubanetworks > Arubaos > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-07-05 | CVE-2023-35972 | Command Injection vulnerability in Arubanetworks Arubaos An authenticated remote command injection vulnerability exists in the ArubaOS web-based management interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged user on the underlying operating system. | 7.2 |
| 2023-07-05 | CVE-2023-35973 | Command Injection vulnerability in Arubanetworks Arubaos Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. | 7.2 |
| 2023-07-05 | CVE-2023-35974 | Command Injection vulnerability in Arubanetworks Arubaos Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. | 7.2 |
| 2023-07-05 | CVE-2023-35975 | Path Traversal vulnerability in Arubanetworks Arubaos An authenticated path traversal vulnerability exists in the ArubaOS command line interface. | 8.1 |
| 2023-07-05 | CVE-2023-35979 | Classic Buffer Overflow vulnerability in Arubanetworks Arubaos There is an unauthenticated buffer overflow vulnerability in the process controlling the ArubaOS web-based management interface. | 7.5 |
| 2023-05-08 | CVE-2023-22787 | An unauthenticated Denial of Service (DoS) vulnerability exists in a service accessed via the PAPI protocol provided by Aruba InstantOS and ArubaOS 10. | 7.5 |
| 2023-05-08 | CVE-2023-22788 | Command Injection vulnerability in multiple products Multiple authenticated command injection vulnerabilities exist in the Aruba InstantOS and ArubaOS 10 command line interface. | 8.8 |
| 2023-05-08 | CVE-2023-22789 | Command Injection vulnerability in multiple products Multiple authenticated command injection vulnerabilities exist in the Aruba InstantOS and ArubaOS 10 command line interface. | 8.8 |
| 2023-05-08 | CVE-2023-22790 | Command Injection vulnerability in multiple products Multiple authenticated command injection vulnerabilities exist in the Aruba InstantOS and ArubaOS 10 command line interface. | 8.8 |
| 2023-03-01 | CVE-2023-22758 | Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. | 7.2 |