Published: 07/09/2021 Updated: 22/04/2022

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

CVSS v3 Base Score: 7.2 | Impact Score: 5.9 | Exploitability Score: 1.2

VMScore: 801

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

A remote arbitrary command execution vulnerability exists in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): before 8.6.0.4-2.2.0.4; before 8.7.1.4, 8.6.0.9, 8.5.0.13, 8.3.0.16, 6.5.4.20, 6.4.4.25. Aruba has released patches for Aruba SD-WAN Software and Gateways and ArubaOS that address this security vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
arubanetworks sd-wan
arubanetworks arubaos
siemens scalance_w1750d_firmware -

Critical Infrastructure Sectors: Chemical, Energy, Food and Agriculture, Healthcare and Public Health, Transportation Systems, Water and Wastewater Systems

CWE-77 https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2021-016.txt https://cert-portal.siemens.com/productcert/pdf/ssa-280624.pdf https://nvd.nist.gov https://www.cisa.gov/uscert/ics/advisories/icsa-21-287-07

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2021-37720

Vulnerability Summary

Vulnerability Trend

ICS Advisories

References

Vulmon Search

About

Products

Connect