Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 17 |
|---|---|---|---|---|
 | Aruba Instant 8.7.1.0 - Arbitrary File Modification Exploit | 16 Jul 202100:00 | – | zdt |
| Aruba Instant (IAP) - Remote Code Execution Exploit | 16 Jul 202100:00 | – | zdt |
 | Aruba Access Points 输入验证错误漏洞 | 29 Mar 202100:00 | – | cnnvd |
 | Aruba Instant Arbitrary File Modification Vulnerability (CNVD-2021-26048) | 30 Mar 202100:00 | – | cnvd |
 | Aruba Instant Access Point Remote Code Execution (CVE-2021-25155) | 5 Sep 202100:00 | – | checkpoint_advisories |
 | CVE-2021-25155 | 30 Mar 202100:13 | – | cvelist |
 | Aruba Instant 8.7.1.0 - Arbitrary File Modification | 16 Jul 202100:00 | – | exploitdb |
 | EUVD-2021-12066 | 7 Oct 202500:30 | – | euvd |
 | Vulnerabilities fixed in Siemens SCALANCE W1750D (Aruba Instant Access Points) | 11 May 202100:00 | – | ncsc |
| Vulnerabilities fixed in Siemens Scalance products | 10 Aug 202100:00 | – | ncsc |
10
Node
OROROROROR
Node
[
{
"product": "Aruba Instant Access Points",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below"
},
{
"status": "affected",
"version": "Aruba Instant 6.5.x: 6.5.4.18 and below"
},
{
"status": "affected",
"version": "Aruba Instant 8.3.x: 8.3.0.14 and below"
},
{
"status": "affected",
"version": "Aruba Instant 8.5.x: 8.5.0.11 and below"
},
{
"status": "affected",
"version": "Aruba Instant 8.6.x: 8.6.0.6 and below"
},
{
"status": "affected",
"version": "Aruba Instant 8.7.x: 8.7.1.0 and below"
}
]
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| opcode | query param | swarm.cgi | Aruba Instant PAPI single_signon usage vulnerability that may leak credentials via the swarm.cgi endpoint | |
| key | query param | swarm.cgi | Aruba Instant PAPI single_signon usage vulnerability that may leak credentials via the swarm.cgi endpoint | |
| ip | query param | swarm.cgi | Aruba Instant PAPI single_signon usage vulnerability that may leak credentials via the swarm.cgi endpoint | |
| opcode | request body | swarm.cgi | Config command abuse (opcode=config) to create a local directory and potentially modify configuration via swarm.cgi | |
| ip | request body | swarm.cgi | Config command abuse (opcode=config) to create a local directory and potentially modify configuration via swarm.cgi | |
| cmd | request body | swarm.cgi | Config command abuse (opcode=config) to create a local directory and potentially modify configuration via swarm.cgi | |
| refresh | request body | swarm.cgi | Config command abuse (opcode=config) to create a local directory and potentially modify configuration via swarm.cgi | |
| sid | request body | swarm.cgi | Config command abuse (opcode=config) to create a local directory and potentially modify configuration via swarm.cgi | |
| opcode | request body | swarm.cgi | File upload (opcode=cp-upload) to place a malicious file through swarm.cgi | |
| file_type | request body | swarm.cgi | File upload (opcode=cp-upload) to place a malicious file through swarm.cgi |
10
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 03:41Current
6.5Medium risk
Vulners AI Score6.5
CVSS 3.16.5
CVSS 28.5
EPSS0.13312