Vulnerabilities > Arubanetworks

DATE CVE VULNERABILITY TITLE RISK
2022-12-12 CVE-2022-37908 Unspecified vulnerability in Arubanetworks Arubaos and Sd-Wan
An authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series controllers.
network
low complexity
arubanetworks
6.5
2022-12-12 CVE-2022-37909 Unspecified vulnerability in Arubanetworks Arubaos and Sd-Wan
Aruba has identified certain configurations of ArubaOS that can lead to sensitive information disclosure from the configured ESSIDs.
high complexity
arubanetworks
5.3
2022-12-12 CVE-2022-37910 Classic Buffer Overflow vulnerability in Arubanetworks Arubaos and Sd-Wan
A buffer overflow vulnerability exists in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-120
6.5
2022-12-12 CVE-2022-37911 XXE vulnerability in Arubanetworks Arubaos and Sd-Wan
Due to improper restrictions on XML entities multiple vulnerabilities exist in the command line interface of ArubaOS.
network
low complexity
arubanetworks CWE-611
5.5
2022-12-12 CVE-2022-37912 OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-78
8.8
2022-12-12 CVE-2022-37919 Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise
A vulnerability exists in the API of Aruba EdgeConnect Enterprise.
network
low complexity
arubanetworks
7.5
2022-12-12 CVE-2022-37920 Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks
7.2
2022-12-12 CVE-2022-37921 Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks
7.2
2022-12-12 CVE-2022-37922 Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks
7.2
2022-12-12 CVE-2022-37923 Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks
7.2