Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubanetworks vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-5342
Aruba Networks ClearPass prior to 6.3.5 and 6.4.x prior to 6.4.1 allows remote malicious users to execute arbitrary commands via unspecified vectors, a different vulnerability than CVE-2014-6627.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
9.8
CVSSv3
CVE-2020-24633
There are multiple buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending especially crafted packets destined to the PAPI (Aruba Networks AP management protocol) UDP port (8211) of access-points or controllers in Aruba 9000 Gateway; Ar...
Arubanetworks Arubaos
Arubanetworks Sd-wan
NA
CVE-2008-7023
Aruba Mobility Controller running ArubaOS 3.3.1.16, and possibly other versions, installs the same default X.509 certificate for all installations, which allows remote malicious users to bypass authentication. NOTE: this is only a vulnerability when the administrator does not fol...
Arubanetworks Aruba Mobility Controller -
Arubanetworks Arubaos 3.3.1.16
NA
CVE-2008-7095
The SNMP daemon in ArubaOS 3.3.2.6 in Aruba Mobility Controller does not restrict SNMP access, which allows remote malicious users to (1) read all SNMP community strings via SNMP-COMMUNITY-MIB::snmpCommunityName (1.3.6.1.6.3.18.1.1.1.2) or SNMP-VIEW-BASED-ACM-MIB::vacmGroupName (...
Arubanetworks Aruba Mobility Controller
Arubanetworks Arubaos 3.3.2.6
9.8
CVSSv3
CVE-2020-24634
An attacker is able to remotely inject arbitrary commands by sending especially crafted packets destined to the PAPI (Aruba Networks AP Management protocol) UDP port (8211) of access-pointsor controllers in Aruba 9000 Gateway; Aruba 7000 Series Mobility Controllers; Aruba 7200 Se...
Arubanetworks Arubaos
Arubanetworks Sd-wan
7.2
CVSSv3
CVE-2020-24637
Two vulnerabilities in ArubaOS GRUB2 implementation allows for an malicious user to bypass secureboot. Successful exploitation of this vulnerability this could lead to remote compromise of system integrity by allowing an malicious user to load an untrusted or modified kernel in A...
Arubanetworks Arubaos
Arubanetworks Sd-wan
7.2
CVSSv3
CVE-2021-37719
A remote arbitrary command execution vulnerability exists in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): before 8.6.0.4-2.2.0.4; before 8.7.1.4, 8.6.0.9, 8.5.0.13, 8.3.0.16, 6.5.4.20, 6.4.4.25. Aruba has released patches for Aruba SD-WAN Softwa...
Arubanetworks Sd-wan
Arubanetworks Arubaos
NA
CVE-2014-6625
The Policy Manager in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote authenticated users to gain privileges via unspecified vectors.
Arubanetworks Clearpass 6.4.0
Arubanetworks Clearpass
NA
CVE-2014-6620
Cross-site scripting (XSS) vulnerability in Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
NA
CVE-2014-6621
Aruba Networks ClearPass prior to 6.3.6 and 6.4.x prior to 6.4.1 does not disable the troubleshooting and diagnostics page in production systems, which allows remote malicious users to obtain version numbers, module configuration, and other sensitive information by reading the pa...
Arubanetworks Clearpass
Arubanetworks Clearpass 6.4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »