Vulnerabilities > Arubanetworks

DATE CVE VULNERABILITY TITLE RISK
2024-07-30 CVE-2024-41916 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability exists in ClearPass Policy Manager that allows for an attacker with administrative privileges to access sensitive information in a cleartext format.
network
low complexity
arubanetworks
4.9
2024-07-30 CVE-2024-5486 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability exists in ClearPass Policy Manager that allows for an attacker with administrative privileges to access sensitive information in a cleartext format.
network
low complexity
arubanetworks
4.9
2024-07-24 CVE-2024-41136 OS Command Injection vulnerability in Arubanetworks Edgeconnect Sd-Wan Orchestrator
An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateways Command Line Interface.
network
low complexity
arubanetworks CWE-78
8.8
2024-07-24 CVE-2024-22444 Cross-site Scripting vulnerability in Arubanetworks Edgeconnect Sd-Wan Orchestrator
A vulnerability within the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface.
network
low complexity
arubanetworks CWE-79
6.1
2024-07-24 CVE-2024-22443 Unspecified vulnerability in Arubanetworks Edgeconnect Sd-Wan Orchestrator
A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a server-side prototype pollution attack.
network
low complexity
arubanetworks
8.8
2024-07-24 CVE-2024-41914 Cross-site Scripting vulnerability in Arubanetworks Edgeconnect Sd-Wan Orchestrator
A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface.
network
low complexity
arubanetworks CWE-79
critical
9.0
2024-02-27 CVE-2024-26300 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability in the guest interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface.
network
low complexity
arubanetworks
4.8
2024-02-27 CVE-2024-26301 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information.
network
low complexity
arubanetworks
6.5
2024-02-27 CVE-2024-26294 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks
8.8
2024-02-27 CVE-2024-26295 Unspecified vulnerability in Arubanetworks Clearpass Policy Manager
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host.
network
low complexity
arubanetworks
8.8