Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks aos-cx vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-23679
AOS-CX lacks Anti-CSRF protections in place for state-changing operations. This can potentially be exploited by an malicious user to execute commands in the context of another user in ArubaOS-CX Switches version(s): AOS-CX 10.10.xxxx: 10.10.0002 and below, AOS-CX 10.09.xxxx: 10.0...
Arubanetworks Aos-cx
8.8
CVSSv3
CVE-2022-23680
AOS-CX lacks Anti-CSRF protections in place for state-changing operations. This can potentially be exploited by an malicious user to execute commands in the context of another user in ArubaOS-CX Switches version(s): AOS-CX 10.10.xxxx: 10.10.0002 and below, AOS-CX 10.09.xxxx: 10.0...
Arubanetworks Aos-cx
8.8
CVSSv3
CVE-2022-23684
A vulnerability in the web-based management interface of AOS-CX could allow a remote authenticated user with read-only privileges to escalate their permissions to those of an administrative user. Successful exploitation of this vulnerability allows an malicious user to escalate p...
Arubanetworks Aos-cx
7.8
CVSSv3
CVE-2022-23681
Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating system leading to complete switch compromis...
Arubanetworks Aos-cx
7.8
CVSSv3
CVE-2022-23682
Multiple vulnerabilities exist in the AOS-CX command line interface that could lead to authenticated command injection. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating system leading to complete switch compromis...
Arubanetworks Aos-cx
7.2
CVSSv3
CVE-2022-23683
Authenticated command injection vulnerabilities exist in the AOS-CX Network Analytics Engine via NAE scripts. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system, leading to a...
Arubanetworks Aos-cx
7.2
CVSSv3
CVE-2021-29143
A remote execution of arbitrary commands vulnerability exists in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): Aruba AOS-CX fi...
Arubanetworks Aos-cx Firmware
6.8
CVSSv3
CVE-2022-23691
A vulnerability exists in certain AOS-CX switch models which could allow an attacker with access to the recovery console to bypass normal authentication. A successful exploit allows an malicious user to bypass system authentication and achieve total switch compromise in ArubaOS-C...
Arubanetworks Aos-cx
6.2
CVSSv3
CVE-2021-29149
A local bypass security restrictions vulnerability exists in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): Aruba AOS-CX firmwa...
Arubanetworks Aos-cx Firmware
6.1
CVSSv3
CVE-2021-29148
A local cross-site scripting (XSS) vulnerability exists in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series version(s): Aruba AOS-CX firmware...
Arubanetworks Aos-cx Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »