Vulnerabilities > Arubanetworks > High

DATE CVE VULNERABILITY TITLE RISK
2023-01-05 CVE-2022-44535 Unspecified vulnerability in Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
A vulnerability in the Aruba EdgeConnect Enterprise Orchestrator web-based management interface allows remote low-privileged authenticated users to escalate their privileges to those of an administrative user.
network
low complexity
arubanetworks
8.8
8.8
2022-12-12 CVE-2022-37898 OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-78
7.2
7.2
2022-12-12 CVE-2022-37899 OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-78
7.2
7.2
2022-12-12 CVE-2022-37900 OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-78
7.2
7.2
2022-12-12 CVE-2022-37901 OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-78
7.2
7.2
2022-12-12 CVE-2022-37902 OS Command Injection vulnerability in Arubanetworks Arubaos and Sd-Wan
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-78
7.2
7.2
2022-12-12 CVE-2022-37903 Out-of-bounds Write vulnerability in Arubanetworks Arubaos and Sd-Wan
A vulnerability exists that allows an authenticated attacker to overwrite an arbitrary file with attacker-controlled content via the web interface.
network
low complexity
arubanetworks CWE-787
8.8
8.8
2022-12-12 CVE-2022-37904 Unspecified vulnerability in Arubanetworks Arubaos and Sd-Wan
Vulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an attacker to execute arbitrary code during the boot sequence.
network
low complexity
arubanetworks
8.8
8.8
2022-12-12 CVE-2022-37905 Unspecified vulnerability in Arubanetworks Arubaos and Sd-Wan
Vulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an attacker to execute arbitrary code during the boot sequence.
network
low complexity
arubanetworks
8.8
8.8
2022-12-12 CVE-2022-37906 Path Traversal vulnerability in Arubanetworks Arubaos and Sd-Wan
An authenticated path traversal vulnerability exists in the ArubaOS command line interface.
network
low complexity
arubanetworks CWE-22
8.1
8.1