A remote authenticated sql injection vulnerability exists in Aruba AirWave Management Platform version(s): before 8.2.12.0. Multiple vulnerabilities in the API of AirWave could allow an authenticated remote malicious user to conduct SQL injection attacks against the AirWave instance. An attacker could exploit these vulnerabilities to obtain and modify sensitive information in the underlying database.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
arubanetworks airwave |