Vulnerabilities > Arubanetworks > Arubaos > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-09-07 CVE-2021-37731 Path Traversal vulnerability in multiple products
A local path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.0-2.2.0.4; Prior to 8.7.1.1, 8.6.0.7, 8.5.0.12, 8.3.0.16.
low complexity
arubanetworks siemens CWE-22
6.2
6.2
2021-09-07 CVE-2021-37733 Path Traversal vulnerability in multiple products
A remote path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.4-2.2.0.4; Prior to 8.7.1.1, 8.6.0.7, 8.5.0.11, 8.3.0.16.
network
low complexity
arubanetworks siemens CWE-22
4.9
4.9
2019-09-13 CVE-2019-5314 Injection vulnerability in Arubanetworks Arubaos
Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS.
network
low complexity
arubanetworks CWE-74
6.1
6.1