Vulnerabilities > Arubanetworks
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-12 | CVE-2022-43542 | Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. | 8.8 |
| 2022-12-12 | CVE-2022-44532 | Path Traversal vulnerability in Arubanetworks Edgeconnect Enterprise An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise command line interface. | 6.5 |
| 2022-12-12 | CVE-2022-44533 | Unspecified vulnerability in Arubanetworks Edgeconnect Enterprise A vulnerability in the Aruba EdgeConnect Enterprise web management interface allows remote authenticated users to run arbitrary commands on the underlying host. | 7.2 |
| 2022-12-08 | CVE-2022-37916 | Unspecified vulnerability in Arubanetworks Airwave Vulnerabilities in the AirWave Management Platform web-based management interface exist which expose some URLs to a lack of proper access controls. | 8.1 |
| 2022-12-08 | CVE-2022-37917 | Unspecified vulnerability in Arubanetworks Airwave Vulnerabilities in the AirWave Management Platform web-based management interface exist which expose some URLs to a lack of proper access controls. | 8.1 |
| 2022-12-08 | CVE-2022-37918 | Unspecified vulnerability in Arubanetworks Airwave Vulnerabilities in the AirWave Management Platform web-based management interface exist which expose some URLs to a lack of proper access controls. | 8.1 |
| 2022-10-28 | CVE-2022-37913 | Unspecified vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator Vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an unauthenticated remote attacker to bypass authentication. | 9.8 |
| 2022-10-28 | CVE-2022-37914 | Unspecified vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator Vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an unauthenticated remote attacker to bypass authentication. | 9.8 |
| 2022-10-28 | CVE-2022-37915 | Unspecified vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator A vulnerability in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an unauthenticated remote attacker to run arbitrary commands on the underlying host. | 9.8 |
| 2022-10-07 | CVE-2022-37893 | OS Command Injection vulnerability in multiple products An authenticated command injection vulnerability exists in the Aruba InstantOS and ArubaOS 10 command line interface. | 7.8 |