Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
aruba vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2016-8526
Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to an XML external entities (XXE). XXEs are a way to permit XML parsers to access storage that exist on external systems. If an unprivileged user is permitted to control the contents of XML files, XXE can ...
Hp Airwave
1 EDB exploit
4.3
CVSSv2
CVE-2016-8527
Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to a reflected cross-site scripting (XSS). The vulnerability is present in the VisualRF component of AirWave. By exploiting this vulnerability, an attacker who can trick a logged-in AirWave administrative ...
Hp Airwave
1 EDB exploit
8.5
CVSSv2
CVE-2021-25155
A remote arbitrary file modification vulnerability exists in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0...
Arubanetworks Instant
Siemens Scalance W1750d Firmware
NA
CVE-2015-5437
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: The CNA or individual who requested this candidate did not associate it with any vulnerability during 2015. Notes: none
1 EDB exploit
7.5
CVSSv2
CVE-2014-7299
Unspecified vulnerability in administrative interfaces in ArubaOS 6.3.1.11, 6.3.1.11-FIPS, 6.4.2.1, and 6.4.2.1-FIPS on Aruba controllers allows remote malicious users to bypass authentication, and obtain potentially sensitive information or add guest accounts, via an SSH session...
Arubanetworks Arubaos 6.4.2.1
Arubanetworks Arubaos 6.3.11
NA
CVE-2024-33511
There is a buffer overflow vulnerability in the underlying Automatic Reporting service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful ex...
1 Article
NA
CVE-2024-33512
There is a buffer overflow vulnerability in the underlying Local User Authentication Database service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211)...
1 Article
9.3
CVSSv2
CVE-2022-23676
A remote execution of arbitrary code vulnerability exists in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Sw...
Arubanetworks 5406r Firmware
Arubanetworks 3810m Firmware
Arubanetworks 2920 Firmware
Arubanetworks 2930f Firmware
Arubanetworks 2930m Firmware
Arubanetworks 2530 Firmware
Arubanetworks 2540 Firmware
Arubanetworks 5412r Firmware
Arubanetworks 2615 Firmware
Arubanetworks 2620 Firmware
Arubanetworks 2915 Firmware
1 Article
9.3
CVSSv2
CVE-2022-23677
A remote execution of arbitrary code vulnerability exists in ArubaOS-Switch Devices version(s): ArubaOS-Switch 15.xx.xxxx: All versions; ArubaOS-Switch 16.01.xxxx: All versions; ArubaOS-Switch 16.02.xxxx: K.16.02.0033 and below; ArubaOS-Switch 16.03.xxxx: All versions; ArubaOS-Sw...
Arubanetworks 5406r Firmware
Arubanetworks 2920 Firmware
Arubanetworks 2930f Firmware
Arubanetworks 2930m Firmware
Arubanetworks 2530 Firmware
Arubanetworks 2540 Firmware
Arubanetworks 5412r Firmware
Arubanetworks 2615 Firmware
Arubanetworks 2620 Firmware
Arubanetworks 2915 Firmware
Arubanetworks 3810m Firmware
1 Article
NA
CVE-2024-26304
There is a buffer overflow vulnerability in the underlying L2/L3 Management service that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba's access point management protocol) UDP port (8211). Successful explo...
1 Github repository
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »