Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-37900
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities results in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
NA
CVE-2022-37901
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities results in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
NA
CVE-2022-37903
A vulnerability exists that allows an authenticated malicious user to overwrite an arbitrary file with attacker-controlled content via the web interface. Successful exploitation of this vulnerability could lead to full compromise the underlying host operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
NA
CVE-2022-37904
Vulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an malicious user to execute arbitrary code during the boot sequence. Successful exploitation could allow an malicious user to achieve permanent modification of the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
NA
CVE-2022-37905
Vulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an malicious user to execute arbitrary code during the boot sequence. Successful exploitation could allow an malicious user to achieve permanent modification of the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
9
CVSSv2
CVE-2008-2273
Unspecified vulnerability in the TACACS authentication component in Aruba Mobility Controller 3.1.x, 3.2.x, and 3.3.x allows remote authenticated users to gain privileges via unknown vectors.
Arubanetworks Arubaos 3.1
Arubanetworks Arubaos 3.2
Arubanetworks Arubaos
5.5
CVSSv2
CVE-2021-37729
A remote path traversal vulnerability exists in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): before 8.6.0.0-2.2.0.4; before 8.7.1.3, 8.6.0.9, 8.5.0.12, 8.3.0.16, 6.5.4.19, 6.4.4.25. Aruba has released patches for Aruba SD-WAN Software and Gatewa...
Arubanetworks Arubaos
Arubanetworks Sd-wan -
Arubanetworks Sd-wan
Siemens Scalance W1750d Firmware
10
CVSSv2
CVE-2008-7023
Aruba Mobility Controller running ArubaOS 3.3.1.16, and possibly other versions, installs the same default X.509 certificate for all installations, which allows remote malicious users to bypass authentication. NOTE: this is only a vulnerability when the administrator does not fol...
Arubanetworks Aruba Mobility Controller -
Arubanetworks Arubaos 3.3.1.16
7.8
CVSSv2
CVE-2008-7095
The SNMP daemon in ArubaOS 3.3.2.6 in Aruba Mobility Controller does not restrict SNMP access, which allows remote malicious users to (1) read all SNMP community strings via SNMP-COMMUNITY-MIB::snmpCommunityName (1.3.6.1.6.3.18.1.1.1.2) or SNMP-VIEW-BASED-ACM-MIB::vacmGroupName (...
Arubanetworks Aruba Mobility Controller
Arubanetworks Arubaos 3.3.2.6
NA
CVE-2023-22770
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Arubaos
Arubanetworks Sd-wan
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
firmware
CVE-2006-4304
CVE-2024-32878
CVE-2024-31502
XSS
CVE-2024-3059
CVE-2024-33692
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »