Vulnerabilities > Arubanetworks

DATE	CVE	VULNERABILITY TITLE	RISK
2019-05-10	CVE-2018-7084	OS Command Injection vulnerability in multiple products A command injection vulnerability is present that permits an unauthenticated user with access to the Aruba Instant web interface to execute arbitrary system commands within the underlying operating system. network low complexity arubanetworks siemens CWE-78 critical	9.8
2019-05-10	CVE-2018-7064	Cross-site Scripting vulnerability in multiple products A reflected cross-site scripting (XSS) vulnerability is present in an unauthenticated Aruba Instant web interface. network low complexity arubanetworks siemens CWE-79	6.1
2019-05-10	CVE-2018-7083	Information Exposure vulnerability in multiple products If a process running within Aruba Instant crashes, it may leave behind a "core dump", which contains the memory contents of the process at the time it crashed. network low complexity arubanetworks siemens CWE-200	7.5
2019-05-10	CVE-2018-7082	OS Command Injection vulnerability in multiple products A command injection vulnerability is present in Aruba Instant that permits an authenticated administrative user to execute arbitrary commands on the underlying operating system. network low complexity arubanetworks siemens CWE-78	7.2
2018-12-07	CVE-2018-7080	Unspecified vulnerability in Arubanetworks products A vulnerability exists in the firmware of embedded BLE radios that are part of some Aruba Access points. high complexity arubanetworks	7.5
2018-12-07	CVE-2018-7079	Incorrect Authorization vulnerability in Arubanetworks Clearpass Policy Manager Aruba ClearPass Policy Manager guest authorization failure. network low complexity arubanetworks CWE-863	7.2
2018-12-07	CVE-2018-7067	Improper Authentication vulnerability in Arubanetworks Clearpass Policy Manager A Remote Authentication bypass in Aruba ClearPass Policy Manager leads to complete cluster compromise. network low complexity arubanetworks CWE-287	7.2
2018-12-07	CVE-2018-7066	Unspecified vulnerability in Arubanetworks Clearpass Policy Manager An unauthenticated remote command execution exists in Aruba ClearPass Policy Manager on linked devices. network high complexity arubanetworks critical	9.0
2018-12-07	CVE-2018-7065	SQL Injection vulnerability in Arubanetworks Clearpass Policy Manager An authenticated SQL injection vulnerability in Aruba ClearPass Policy Manager can lead to privilege escalation. network low complexity arubanetworks CWE-89	7.2
2018-12-07	CVE-2018-7063	XXE vulnerability in Arubanetworks Clearpass Policy Manager In Aruba ClearPass, disabled API admins can still perform read/write operations. network high complexity arubanetworks CWE-611	8.1

Vulnerabilities > Arubanetworks {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Arubanetworks"}]}

Vulnerabilities > Arubanetworks