arubanetworks

578 tracked vulnerabilities.

CVE-2025-37162 MEDIUM
ArubaOS < 10.7.2.0 - Authenticated Command Injection via Command Line Interface
Nov 18, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-37161 HIGH
ArubaOS < 10.7.2.0 - Unauthenticated Denial of Service via Web Management Interface
Nov 18, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-37163 HIGH
Aruba Airwave < 8.3.0.5 - Authenticated OS Command Injection via Command Line Interface
Nov 18, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-37145 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Download via Low-Level Interface Library
Oct 14, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-37144 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Download via Low-Level Interface Library
Oct 14, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-37143 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Download via Web Management Interface
Oct 14, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-37142 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Download via CLI Binary
Oct 14, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-37141 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Download via CLI Binary
Oct 14, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-37140 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Download via CLI Binary
Oct 14, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-37138 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Command Injection via CLI Binary
Oct 14, 2025
CVSS 6.2
EPSS 0.00
CVE-2025-37137 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Deletion via Command-Line Interface
Oct 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-37136 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Deletion via Command-Line Interface
Oct 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-37135 MEDIUM
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Deletion via Command-Line Interface
Oct 14, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-37134 HIGH
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Command Injection in CLI Binary
Oct 14, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-37133 HIGH
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Command Injection in CLI Binary
Oct 14, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-37132 HIGH
ArubaOS 8.10.0.0-8.10.0.18 - Authenticated Arbitrary File Write and Remote Code Execution
Oct 14, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-27085 MEDIUM
AOS-10 GW/AOS-8 - Authenticated RCE
Apr 08, 2025
CVSS 4.9
EPSS 0.00
CVE-2025-27084 MEDIUM
AOS-10 GW/AOS-8 Controller/Mobility Conductor - XSS
Apr 08, 2025
CVSS 5.4
EPSS 0.00
CVE-2025-27083 HIGH
AOS-10 GW/AOS-8 - Command Injection
Apr 08, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-27082 HIGH
AOS-10 GW/AOS-8 - Arbitrary File Write
Apr 08, 2025
CVSS 7.2
EPSS 0.00
CVE-2025-25039 MEDIUM
HPE Aruba Networking ClearPass Policy Manager - Command Injection
Feb 04, 2025
CVSS 4.7
EPSS 0.00
CVE-2025-23060 MEDIUM
Aruba ClearPass Policy Manager 6.11.0-6.11.9 - Cleartext Transmission of Sensitive Information
Feb 04, 2025
CVSS 6.6
EPSS 0.00
CVE-2025-23059 MEDIUM
Aruba ClearPass Policy Manager 6.11.0-6.11.9 - Authenticated Sensitive Data Exposure via Directory Traversal
Feb 04, 2025
CVSS 6.8
EPSS 0.00
CVE-2025-23058 HIGH
ClearPass Policy Manager - Privilege Escalation
Feb 04, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-23057 MEDIUM
HPE Aruba Networking Fabric Composer 7.0.0-7.1.0 - Authenticated Stored Cross-Site Scripting
Jan 28, 2025
CVSS 5.5
EPSS 0.00
Products
arubaos 227 clearpass_policy_manager 136 sd-wan 88 airwave 36 clearpass 36 instant 33 edgeconnect_sd-wan_orchestrator 29 edgeconnect_enterprise 25 aruba_edgeconnect_enterprise_orchestrator 16 airwave_glass 12 aos-cx 12 aruba_instant 12 2540_firmware 5 2920_firmware 5 fabric_composer 5 2530_firmware 4 aruba_mobility_controller 4 2930_firmware 3 3810_firmware 3 5400r_firmware 3 aos-cx_firmware 3 2615_firmware 2 2620_firmware 2 2915_firmware 2 2930f_firmware 2 2930m_firmware 2 3810m_firmware 2 5406r_firmware 2 5412r_firmware 2 cx_6200f_firmware 2
Quick Filters
Critical CVEs With Exploits In CISA KEV