Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2015-3656
Aruba Networks ClearPass Policy Manager prior to 6.4.7 and 6.5.x prior to 6.5.2 allows remote authenticated lower-level administrators to gain privileges by leveraging failure to properly enforce authorization checks.
Arubanetworks Clearpass 6.5.1
Arubanetworks Clearpass 6.5
Arubanetworks Clearpass
7.2
CVSSv3
CVE-2022-37899
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities results in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
7.2
CVSSv3
CVE-2022-37900
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities results in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
7.2
CVSSv3
CVE-2022-37902
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities results in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
8.8
CVSSv3
CVE-2022-37904
Vulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an malicious user to execute arbitrary code during the boot sequence. Successful exploitation could allow an malicious user to achieve permanent modification of the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
8.8
CVSSv3
CVE-2022-37905
Vulnerabilities in ArubaOS running on 7xxx series controllers exist that allows an malicious user to execute arbitrary code during the boot sequence. Successful exploitation could allow an malicious user to achieve permanent modification of the underlying operating system.
Arubanetworks Sd-wan
Arubanetworks Arubaos
Arubanetworks Arubaos 10.3.0.0
6.5
CVSSv3
CVE-2021-37729
A remote path traversal vulnerability exists in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): before 8.6.0.0-2.2.0.4; before 8.7.1.3, 8.6.0.9, 8.5.0.12, 8.3.0.16, 6.5.4.19, 6.4.4.25. Aruba has released patches for Aruba SD-WAN Software and Gatewa...
Arubanetworks Arubaos
Arubanetworks Sd-wan -
Arubanetworks Sd-wan
Siemens Scalance W1750d Firmware
NA
CVE-2008-7023
Aruba Mobility Controller running ArubaOS 3.3.1.16, and possibly other versions, installs the same default X.509 certificate for all installations, which allows remote malicious users to bypass authentication. NOTE: this is only a vulnerability when the administrator does not fol...
Arubanetworks Aruba Mobility Controller -
Arubanetworks Arubaos 3.3.1.16
NA
CVE-2008-7095
The SNMP daemon in ArubaOS 3.3.2.6 in Aruba Mobility Controller does not restrict SNMP access, which allows remote malicious users to (1) read all SNMP community strings via SNMP-COMMUNITY-MIB::snmpCommunityName (1.3.6.1.6.3.18.1.1.1.2) or SNMP-VIEW-BASED-ACM-MIB::vacmGroupName (...
Arubanetworks Aruba Mobility Controller
Arubanetworks Arubaos 3.3.2.6
NA
CVE-2014-6620
Cross-site scripting (XSS) vulnerability in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »