Vulnerabilities > Arubanetworks > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2023-03-01	CVE-2023-22771	Insufficient Session Expiration vulnerability in Arubanetworks Arubaos and Sd-Wan An insufficient session expiration vulnerability exists in the ArubaOS command line interface. network low complexity arubanetworks CWE-613	2.4
2022-05-17	CVE-2022-23674	Cross-site Scripting vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated stored cross-site scripting (xss) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. network arubanetworks CWE-79	3.5
2022-05-17	CVE-2022-23675	Cross-site Scripting vulnerability in Arubanetworks Clearpass Policy Manager A remote authenticated stored cross-site scripting (xss) vulnerability was discovered in Aruba ClearPass Policy Manager version(s): 6.10.4 and below, 6.9.9 and below, 6.8.9-HF2 and below, 6.7.x and below. network arubanetworks CWE-79	3.5
2021-08-26	CVE-2021-37715	Cross-site Scripting vulnerability in Arubanetworks Airwave A remote cross-site scripting (XSS) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.13.0. network arubanetworks CWE-79	3.5
2021-04-29	CVE-2021-29139	Cross-site Scripting vulnerability in Arubanetworks Clearpass A remote cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. network arubanetworks CWE-79	3.5
2021-04-29	CVE-2021-29142	Cross-site Scripting vulnerability in Arubanetworks Clearpass A remote cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. network arubanetworks CWE-79	3.5
2021-04-29	CVE-2021-29146	Cross-site Scripting vulnerability in Arubanetworks Clearpass A remote cross-site scripting (XSS) vulnerability was discovered in Aruba ClearPass Policy Manager version(s) prior to 6.9.5, 6.8.9, 6.7.14-HF1. network arubanetworks CWE-79	3.5
2021-03-30	CVE-2021-25145	A remote unauthorized disclosure of information vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 6.4.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.10 and below; Aruba Instant 8.6.x: 8.6.0.5 and below; Aruba Instant 8.7.x: 8.7.0.0 and below. low complexity arubanetworks siemens	3.3
2021-03-05	CVE-2021-26968	Cross-site Scripting vulnerability in Arubanetworks Airwave A remote authenticated stored cross-site scripting (xss) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.12.0. network arubanetworks CWE-79	3.5
2020-04-16	CVE-2020-7110	Cross-site Scripting vulnerability in Arubanetworks Clearpass ClearPass is vulnerable to Stored Cross Site Scripting by allowing a malicious administrator, or a compromised administrator account, to save malicious scripts within ClearPass that could be executed resulting in a privilege escalation attack. network arubanetworks CWE-79	3.5