Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubaos vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv3
CVE-2023-38484
Vulnerabilities exist in the BIOS implementation of Aruba 9200 and 9000 Series Controllers and Gateways that could allow an malicious user to execute arbitrary code early in the boot sequence. An attacker could exploit this vulnerability to gain access to and change underlying se...
Arubanetworks Arubaos
6.4
CVSSv3
CVE-2023-38485
Vulnerabilities exist in the BIOS implementation of Aruba 9200 and 9000 Series Controllers and Gateways that could allow an malicious user to execute arbitrary code early in the boot sequence. An attacker could exploit this vulnerability to gain access to and change underlying se...
Arubanetworks Arubaos
6.4
CVSSv3
CVE-2023-38486
A vulnerability in the secure boot implementation on affected Aruba 9200 and 9000 Series Controllers and Gateways allows an malicious user to bypass security controls which would normally prohibit unsigned kernel images from executing. An attacker can use this vulnerability to ex...
Arubanetworks Arubaos
7.5
CVSSv3
CVE-2017-9003
Multiple memory corruption flaws are present in ArubaOS which could allow an unauthenticated user to crash ArubaOS processes. With sufficient time and effort, it is possible these vulnerabilities could lead to the ability to execute arbitrary code - remote code execution has not ...
Hp Arubaos -
6.1
CVSSv3
CVE-2019-5314
Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameters that would trigger this vulnerability.
Arubanetworks Arubaos
7.2
CVSSv3
CVE-2019-5315
A command injection vulnerability is present in the web management interface of ArubaOS that permits an authenticated user to execute arbitrary commands on the underlying operating system. A malicious administrator could use this ability to install backdoors or change system conf...
Arubanetworks Arubaos
9.8
CVSSv3
CVE-2018-7081
A remote code execution vulnerability is present in network-listening components in some versions of ArubaOS. An attacker with the ability to transmit specially-crafted IP traffic to a mobility controller could exploit this vulnerability and cause a process crash or to execute ar...
Arubanetworks Arubaos
6.1
CVSSv3
CVE-2023-35971
A vulnerability in the ArubaOS web-based management interface could allow an unauthenticated remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an malicious user to execute arbitrary script...
Arubanetworks Arubaos
1 Github repository
7.2
CVSSv3
CVE-2023-35972
An authenticated remote command injection vulnerability exists in the ArubaOS web-based management interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an...
Arubanetworks Arubaos
7.2
CVSSv3
CVE-2023-35973
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Arubaos
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »