Vulnerabilities > Arubanetworks > High

DATE CVE VULNERABILITY TITLE RISK
2023-03-01 CVE-2023-22767 Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-77
7.2
7.2
2023-03-01 CVE-2023-22768 Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-77
7.2
7.2
2023-03-01 CVE-2023-22769 Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-77
7.2
7.2
2023-03-01 CVE-2023-22770 Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-77
7.2
7.2
2023-01-05 CVE-2022-43519 SQL Injection vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance.
network
low complexity
arubanetworks CWE-89
8.8
8.8
2023-01-05 CVE-2022-43520 SQL Injection vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance.
network
low complexity
arubanetworks CWE-89
8.8
8.8
2023-01-05 CVE-2022-43521 SQL Injection vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance.
network
low complexity
arubanetworks CWE-89
8.8
8.8
2023-01-05 CVE-2022-43522 SQL Injection vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance.
network
low complexity
arubanetworks CWE-89
8.8
8.8
2023-01-05 CVE-2022-43523 SQL Injection vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
Multiple vulnerabilities in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the Aruba EdgeConnect Enterprise Orchestrator instance.
network
low complexity
arubanetworks CWE-89
8.8
8.8
2023-01-05 CVE-2022-43530 SQL Injection vulnerability in Arubanetworks Clearpass Policy Manager
Vulnerabilities in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct SQL injection attacks against the ClearPass Policy Manager instance.
network
low complexity
arubanetworks CWE-89
8.8
8.8