Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks sd-wan - vulnerabilities and exploits
(subscribe to this query)
8.1
CVSSv3
CVE-2023-37430
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
8.1
CVSSv3
CVE-2023-37431
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
8.1
CVSSv3
CVE-2023-37432
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
8.1
CVSSv3
CVE-2023-37433
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
8.1
CVSSv3
CVE-2023-37434
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
6.1
CVSSv3
CVE-2023-37439
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
9.8
CVSSv3
CVE-2020-24633
There are multiple buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending especially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211) of access-points or controllers in Aruba 9000 Gateway; Ar...
Arubanetworks Arubaos
Arubanetworks Sd-wan
9.8
CVSSv3
CVE-2020-24634
An attacker is able to remotely inject arbitrary commands by sending especially crafted packets destined to the PAPI (Aruba Networks AP Management protocol) UDP port (8211) of access-pointsor controllers in Aruba 9000 Gateway; Aruba 7000 Series Mobility Controllers; Aruba 7200 Se...
Arubanetworks Arubaos
Arubanetworks Sd-wan
9.8
CVSSv3
CVE-2022-37897
There is a command injection vulnerability that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211). Successful exploitation of this vulnerability results in the abil...
Arubanetworks Sd-wan
Arubanetworks Arubaos
8.1
CVSSv3
CVE-2022-37906
An authenticated path traversal vulnerability exists in the ArubaOS command line interface. Successful exploitation of the vulnerability results in the ability to delete arbitrary files on the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »