Vulnerabilities > Arubanetworks > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-12-12 | CVE-2022-37926 | Cross-site Scripting vulnerability in Arubanetworks Edgeconnect Enterprise A vulnerability within the web-based management interface of EdgeConnect Enterprise could allow a remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface by uploading a specially crafted file. | 5.4 |
| 2022-12-12 | CVE-2022-43518 | Path Traversal vulnerability in Arubanetworks Edgeconnect Enterprise An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise web interface. | 6.5 |
| 2022-12-12 | CVE-2022-44532 | Path Traversal vulnerability in Arubanetworks Edgeconnect Enterprise An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise command line interface. | 6.5 |
| 2022-10-07 | CVE-2022-37894 | An unauthenticated Denial of Service (DoS) vulnerability exists in the handling of certain SSID strings by Aruba InstantOS and ArubaOS 10. | 6.5 |
| 2022-10-07 | CVE-2022-37895 | An unauthenticated Denial of Service (DoS) vulnerability exists in the handling of certain SSID strings by Aruba InstantOS and ArubaOS 10. | 4.9 |
| 2022-10-07 | CVE-2022-37896 | Cross-site Scripting vulnerability in multiple products A vulnerability in the Aruba InstantOS and ArubaOS 10 web management interface could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. | 6.1 |
| 2022-10-07 | CVE-2022-37892 | Cross-site Scripting vulnerability in multiple products A vulnerability in the Aruba InstantOS and ArubaOS 10 web management interface could allow an unauthenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the interface. | 5.4 |
| 2022-09-06 | CVE-2022-23686 | Unspecified vulnerability in Arubanetworks Aos-Cx Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. low complexity arubanetworks | 4.3 |
| 2022-09-06 | CVE-2022-23687 | Unspecified vulnerability in Arubanetworks Aos-Cx Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. low complexity arubanetworks | 4.3 |
| 2022-09-06 | CVE-2022-23688 | Unspecified vulnerability in Arubanetworks Aos-Cx Multiple vulnerabilities exist in the processing of packet data by the LLDP service of AOS-CX. low complexity arubanetworks | 4.3 |