Vulnerabilities > Arubanetworks

DATE CVE VULNERABILITY TITLE RISK
2023-01-05 CVE-2022-43534 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability in the ClearPass OnGuard Linux agent could allow malicious users on a Linux instance to elevate their user privileges.
local
low complexity
arubanetworks
7.8
2023-01-05 CVE-2022-43535 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability in the ClearPass OnGuard Windows agent could allow malicious users on a Windows instance to elevate their user privileges.
local
low complexity
arubanetworks
7.8
2023-01-05 CVE-2022-43536 OS Command Injection vulnerability in Arubanetworks Clearpass Policy Manager
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks CWE-78
8.8
2023-01-05 CVE-2022-43537 OS Command Injection vulnerability in Arubanetworks Clearpass Policy Manager
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks CWE-78
7.2
2023-01-05 CVE-2022-43538 OS Command Injection vulnerability in Arubanetworks Clearpass Policy Manager
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks CWE-78
7.2
2023-01-05 CVE-2022-43539 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability exists in the ClearPass Policy Manager cluster communications that allow for an attacker in a privileged network position to potentially obtain sensitive information.
low complexity
arubanetworks
4.5
2023-01-05 CVE-2022-43540 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability exists in the ClearPass OnGuard macOS agent that allows for an attacker with local macOS instance access to potentially obtain sensitive information.
local
low complexity
arubanetworks
5.5
2023-01-05 CVE-2022-44534 Unspecified vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
A vulnerability in the Aruba EdgeConnect Enterprise Orchestrator web-based management interface allows remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks
7.2
2023-01-05 CVE-2022-44535 Unspecified vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
A vulnerability in the Aruba EdgeConnect Enterprise Orchestrator web-based management interface allows remote low-privileged authenticated users to escalate their privileges to those of an administrative user.
network
low complexity
arubanetworks
8.8
2022-12-12 CVE-2022-37897 OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
There is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211).
network
low complexity
arubanetworks CWE-78
critical
9.8