Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks airwave vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2021-26960
A remote unauthenticated cross-site request forgery (csrf) vulnerability exists in Aruba AirWave Management Platform version(s): before 8.2.12.0. A vulnerability in the AirWave web-based management interface could allow an unauthenticated remote malicious user to conduct a CSRF a...
Arubanetworks Airwave
6.3
CVSSv3
CVE-2021-26971
A remote authenticated arbitrary command execution vulnerability exists in Aruba AirWave Management Platform version(s): before 8.2.12.0. Vulnerabilities in the AirWave web-base management interface could allow remote authenticated users to run arbitrary commands on the underlyin...
Arubanetworks Airwave
6.5
CVSSv3
CVE-2023-4896
A vulnerability exists which allows an authenticated malicious user to access sensitive information on the AirWave Management Platform web-based management interface. Successful exploitation allows the malicious user to gain access to some data that could be further exploited to ...
Arubanetworks Airwave
7.5
CVSSv3
CVE-2021-25154
A remote escalation of privilege vulnerability exists in Aruba AirWave Management Platform version(s) before 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.
Arubanetworks Airwave
8.8
CVSSv3
CVE-2021-25167
A remote unauthorized access vulnerability exists in Aruba AirWave Management Platform version(s) before 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.
Arubanetworks Airwave
9.8
CVSSv3
CVE-2020-24639
There is a vulnerability caused by unsafe Java deserialization that allows for arbitrary command execution in a containerized environment within Airwave Glass prior to 1.3.3. Successful exploitation can lead to complete compromise of the underlying host operating system.
Arubanetworks Airwave Glass
9.8
CVSSv3
CVE-2020-24640
There is a vulnerability caused by insufficient input validation that allows for arbitrary command execution in a containerized environment within Airwave Glass prior to 1.3.3. Successful exploitation can lead to complete compromise of the underlying host operating system.
Arubanetworks Airwave Glass
7.5
CVSSv3
CVE-2020-24641
In Aruba AirWave Glass prior to 1.3.3, there is a Server-Side Request Forgery vulnerability through an unauthenticated endpoint that if successfully exploited can result in disclosure of sensitive information. This can be used to perform an authentication bypass and ultimately ga...
Arubanetworks Airwave Glass
5.8
CVSSv3
CVE-2020-7126
A remote server-side request forgery (ssrf) vulnerability exists in Aruba Airwave Software version(s): before 1.3.2.
Arubanetworks Airwave Glass
7.2
CVSSv3
CVE-2020-7129
A remote execution of arbitrary commands vulnerability exists in Aruba Airwave Software version(s): before 1.3.2.
Arubanetworks Airwave Glass
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »