arubanetworks

578 tracked vulnerabilities.

CVE-2020-7116 HIGH
ClearPass Policy Manager WebUI - Authenticated Command Injection
Jun 03, 2020
CVSS 7.2
EPSS 0.01
CVE-2020-7115 CRITICAL
ClearPass Policy Manager 6.7.0-6.7.12 - Unauthenticated Remote Command Execution via Authentication Bypass
Jun 03, 2020
CVSS 9.8
EPSS 0.61
CVE-2020-7114 CRITICAL
Aruba ClearPass 6.7.0-6.7.12 - Unauthenticated Database Modification via Crafted HTTP Packets
Apr 16, 2020
CVSS 9.8
EPSS 0.00
CVE-2020-7113 MEDIUM
Aruba ClearPass 6.7.0-6.7.13 - Unauthenticated Service Account Compromise via HTTP Parameter Tampering
Apr 16, 2020
CVSS 4.9
EPSS 0.00
CVE-2020-7111 HIGH
ClearPass 6.7.0-6.7.12 - Authenticated Remote Code Execution via Server-Side Injection
Apr 16, 2020
CVSS 7.2
EPSS 0.03
CVE-2020-7110 MEDIUM
ClearPass 6.7.0-6.7.12 - Authenticated Stored Cross-Site Scripting
Apr 16, 2020
CVSS 4.8
EPSS 0.00
CVE-2019-5318 MEDIUM
ArubaOS - Cross-Site Request Forgery
Sep 07, 2021
CVSS 6.5
EPSS 0.00
CVE-2019-5319 CRITICAL
Aruba Instant <6.4.4.8-4.2.4.17, <6.5.4.16, <8.3.0.12, <8.5.0.6, <8...
Mar 30, 2021
CVSS 9.8
EPSS 0.02
CVE-2019-5317 MEDIUM
Aruba Instant <8.4.0.5 - Auth Bypass
Mar 29, 2021
CVSS 6.8
EPSS 0.00
CVE-2019-5321 HIGH
Aruba Intelligent Edge Switch Series - RCE
Aug 26, 2020
CVSS 8.8
EPSS 0.00
CVE-2019-5320 MEDIUM
Aruba Intelligent Edge Switch Series - XSS
Aug 26, 2020
CVSS 6.1
EPSS 0.00
CVE-2019-5326 HIGH
Aruba Airwave VisualRF - Code Injection
Feb 27, 2020
CVSS 7.2
EPSS 0.03
CVE-2019-5323 HIGH
Aruba AirWave 8.0.0-8.2.10.0 - Authenticated Command Injection via Input Field
Feb 27, 2020
CVSS 7.2
EPSS 0.01
CVE-2019-5322 HIGH
Aruba Intelligent Edge Switch - Info Disclosure
Feb 13, 2020
CVSS 7.5
EPSS 0.00
CVE-2019-5315 HIGH
ArubaOS 8.0.0.0-8.2.2.0 - Authenticated OS Command Injection
Sep 13, 2019
CVSS 7.2
EPSS 0.02
CVE-2019-5314 MEDIUM
ArubaOS < 6.4.4.20 - HTTP Response Splitting and Reflected Cross-Site Scripting via URL Parameters
Sep 13, 2019
CVSS 6.1
EPSS 0.00
CVE-2018-16417 HIGH
Aruba Instant 4.x < 4.2.4.12, 6.5.x < 6.5.4.11, 8.3.x < 8.3.0.6, 8.4.x < 8.4.0.1 - Command Injection
Oct 30, 2019
CVSS 7.5
EPSS 0.03
CVE-2018-7081 CRITICAL
ArubaOS < 6.4.4.21 - Remote Code Execution via PAPI Protocol
Sep 13, 2019
CVSS 9.8
EPSS 0.02
CVE-2018-7084 CRITICAL
Aruba Instant 4.0-4.2.4.11 - Unauthenticated OS Command Injection
May 10, 2019
CVSS 9.8
EPSS 0.27
CVE-2018-7064 MEDIUM
Aruba Instant 4.0-4.2.4.11 - Unauthenticated Reflected Cross-Site Scripting
May 10, 2019
CVSS 6.1
EPSS 0.00
CVE-2018-7083 HIGH
Aruba Instant 4.0-4.2.4.11 - Unauthenticated Sensitive Information Exposure via Core Dump Access
May 10, 2019
CVSS 7.5
EPSS 0.00
CVE-2018-7082 HIGH
Aruba Instant 4.0-4.2.4.11 - Authenticated OS Command Injection
May 10, 2019
CVSS 7.2
EPSS 0.02
CVE-2018-7080 HIGH
Aruba Access point BLE Radio - Code Injection
Dec 07, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-7079 HIGH
Aruba ClearPass Policy Manager < 6.6.10 - Authenticated Incorrect Authorization
Dec 07, 2018
CVSS 7.2
EPSS 0.00
CVE-2018-7067 HIGH
Aruba ClearPass Policy Manager < 6.6.10 - Remote Authentication Bypass via API Call
Dec 07, 2018
CVSS 7.2
EPSS 0.01
Products
arubaos 227 clearpass_policy_manager 136 sd-wan 88 airwave 36 clearpass 36 instant 33 edgeconnect_sd-wan_orchestrator 29 edgeconnect_enterprise 25 aruba_edgeconnect_enterprise_orchestrator 16 airwave_glass 12 aos-cx 12 aruba_instant 12 2540_firmware 5 2920_firmware 5 fabric_composer 5 2530_firmware 4 aruba_mobility_controller 4 2930_firmware 3 3810_firmware 3 5400r_firmware 3 aos-cx_firmware 3 2615_firmware 2 2620_firmware 2 2915_firmware 2 2930f_firmware 2 2930m_firmware 2 3810m_firmware 2 5406r_firmware 2 5412r_firmware 2 cx_6200f_firmware 2
Quick Filters
Critical CVEs With Exploits In CISA KEV