Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks sd-wan vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2023-37425
A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote malicious user to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an mali...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
6.1
CVSSv3
CVE-2023-37439
Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilit...
Arubanetworks Edgeconnect Sd-wan Orchestrator
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
5.5
CVSSv3
CVE-2022-37911
Due to improper restrictions on XML entities multiple vulnerabilities exist in the command line interface of ArubaOS. A successful exploit could allow an authenticated malicious user to retrieve files from the local system or cause the application to consume system resources, res...
Arubanetworks Sd-wan
Arubanetworks Arubaos
5.4
CVSSv3
CVE-2023-37421
Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an malici...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
5.4
CVSSv3
CVE-2023-37423
Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an malici...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
5.4
CVSSv3
CVE-2023-37422
Vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote malicious user to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an malici...
Arubanetworks Edgeconnect Sd-wan Orchestrator 9.3.0
Arubanetworks Edgeconnect Sd-wan Orchestrator
5.3
CVSSv3
CVE-2023-37440
A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote malicious user to conduct a server-side request forgery (SSRF) attack. A successful exploit allows an malicious user to enumerate information about the i...
Arubanetworks Edgeconnect Sd-wan Orchestrator
5.3
CVSSv3
CVE-2022-37909
Aruba has identified certain configurations of ArubaOS that can lead to sensitive information disclosure from the configured ESSIDs. The scenarios in which disclosure of potentially sensitive information can occur are complex, and depend on factors beyond the control of attackers...
Arubanetworks Sd-wan
Arubanetworks Arubaos
4.9
CVSSv3
CVE-2023-22776
An authenticated path traversal vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files.
Arubanetworks Arubaos
Arubanetworks Sd-wan
4.9
CVSSv3
CVE-2021-37733
A remote path traversal vulnerability exists in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): before 8.6.0.4-2.2.0.4; before 8.7.1.1, 8.6.0.7, 8.5.0.11, 8.3.0.16. Aruba has released patches for Aruba SD-WAN Software and Gateways and ArubaOS that ...
Arubanetworks Arubaos
Arubanetworks Sd-wan
Siemens Scalance W1750d Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
NEXT »