Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arubaos vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2019-5314
Some web components in the ArubaOS software are vulnerable to HTTP Response splitting (CRLF injection) and Reflected XSS. An attacker would be able to accomplish this by sending certain URL parameters that would trigger this vulnerability.
Arubanetworks Arubaos
NA
CVE-2023-35971
A vulnerability in the ArubaOS web-based management interface could allow an unauthenticated remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an malicious user to execute arbitrary script...
Arubanetworks Arubaos
1 Github repository
NA
CVE-2023-35972
An authenticated remote command injection vulnerability exists in the ArubaOS web-based management interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an...
Arubanetworks Arubaos
NA
CVE-2023-35973
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Arubaos
NA
CVE-2023-35974
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
Arubanetworks Arubaos
NA
CVE-2023-35975
An authenticated path traversal vulnerability exists in the ArubaOS command line interface. Successful exploitation of this vulnerability results in the ability to delete arbitrary files in the underlying operating system.
Arubanetworks Arubaos
NA
CVE-2023-35976
Vulnerabilities exist which allow an authenticated malicious user to access sensitive information on the ArubaOS command line interface. Successful exploitation could allow access to data beyond what is authorized by the users existing privilege level.
Arubanetworks Arubaos
NA
CVE-2023-35977
Vulnerabilities exist which allow an authenticated malicious user to access sensitive information on the ArubaOS command line interface. Successful exploitation could allow access to data beyond what is authorized by the users existing privilege level.
Arubanetworks Arubaos
NA
CVE-2023-35978
A vulnerability in ArubaOS could allow an unauthenticated remote malicious user to conduct a reflected cross-site scripting (XSS) attack against a user of the web-based management interface. A successful exploit could allow an malicious user to execute arbitrary script code in a ...
Arubanetworks Arubaos
NA
CVE-2023-35979
There is an unauthenticated buffer overflow vulnerability in the process controlling the ArubaOS web-based management interface. Successful exploitation of this vulnerability results in a Denial-of-Service (DoS) condition affecting the web-based management interface of the contro...
Arubanetworks Arubaos
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-35000
CVE-2024-4439
unauthorized
CVE-2024-0042
CVE-2024-31848
CVE-2023-40694
cache poisoning
CVE-2024-23707
firmware
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »