Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks edgeconnect enterprise vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2022-43528
Under certain configurations, an attacker can login to Aruba EdgeConnect Enterprise Orchestrator without supplying a multi-factor authentication code. Successful exploitation allows an malicious user to login using only a username and password and successfully bypass MFA requirem...
Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
5.4
CVSSv3
CVE-2022-43529
A vulnerability in the web-based management interface of Aruba EdgeConnect Enterprise Orchestrator could allow an remote malicious user to persist a session after a password reset or similar session clearing event. Successful exploitation of this vulnerability could allow an auth...
Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
7.2
CVSSv3
CVE-2022-44534
A vulnerability in the Aruba EdgeConnect Enterprise Orchestrator web-based management interface allows remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an malicious user to execute arbitrary commands as root on the unde...
Arubanetworks Aruba Edgeconnect Enterprise Orchestrator
7.5
CVSSv3
CVE-2022-37919
A vulnerability exists in the API of Aruba EdgeConnect Enterprise. An unauthenticated attacker can exploit this condition via the web-based management interface to create a denial-of-service condition which prevents the appliance from properly responding to API requests in Aruba ...
Arubanetworks Edgeconnect Enterprise
7.2
CVSSv3
CVE-2022-37921
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating syste...
Arubanetworks Edgeconnect Enterprise
7.2
CVSSv3
CVE-2022-37922
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating syste...
Arubanetworks Edgeconnect Enterprise
7.2
CVSSv3
CVE-2022-37924
Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an malicious user to execute arbitrary commands as root on the underlying operating syste...
Arubanetworks Edgeconnect Enterprise
6.1
CVSSv3
CVE-2022-37925
A vulnerability within the web-based management interface of Aruba EdgeConnect Enterprise could allow a remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an malicious user to execute ar...
Arubanetworks Edgeconnect Enterprise
5.4
CVSSv3
CVE-2022-37926
A vulnerability within the web-based management interface of EdgeConnect Enterprise could allow a remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface by uploading a specially crafted file. A successful exploit could allow an...
Arubanetworks Edgeconnect Enterprise
6.5
CVSSv3
CVE-2022-43518
An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise web interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeC...
Arubanetworks Edgeconnect Enterprise
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »