CVE-2023-37434

🗓️ 22 Aug 2023 18:08:17Reported by hpeType

cve🔗 web.nvd.nist.gov📰️ 1 Media mentions👁 50 Views

Vulnerabilities in EdgeConnect SD-WAN Orchestrator allow authenticated remote attacker to conduct SQL injection attacks

Reporter	Title	Published	Views	Family All 9
Circl	CVE-2023-37434	22 Aug 202322:28	–	circl
CNNVD	Aruba Networks EdgeConnect SD-WAN Orchestrator SQL注入漏洞	22 Aug 202300:00	–	cnnvd
Cvelist	CVE-2023-37434 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface	22 Aug 202318:08	–	cvelist
EUVD	EUVD-2023-41334	3 Oct 202520:07	–	euvd
Tenable Nessus	Oracle MySQL Server 5.7.x < 5.7.42 (Apr 2023 CPU)	20 Apr 202300:00	–	nessus
NVD	CVE-2023-37434	22 Aug 202319:16	–	nvd
Prion	Sql injection	22 Aug 202319:16	–	prion
RedhatCVE	CVE-2023-37434	23 May 202504:49	–	redhatcve
Vulnrichment	CVE-2023-37434 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface	22 Aug 202318:08	–	vulnrichment

NVD

Node

arubanetworks edgeconnect_sd-wan_orchestratorRange9.0.0–9.0.5

arubanetworks edgeconnect_sd-wan_orchestratorRange9.1.0–9.1.7

arubanetworks edgeconnect_sd-wan_orchestratorRange9.2.0–9.2.5

arubanetworks edgeconnect_sd-wan_orchestratorMatch9.3.0

[
  {
    "defaultStatus": "affected",
    "product": "EdgeConnect SD-WAN Orchestrator",
    "vendor": "Hewlett Packard Enterprise (HPE)",
    "versions": [
      {
        "lessThanOrEqual": "<=9.3.0",
        "status": "affected",
        "version": "Orchestrator 9.3.x",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "<=9.2.*",
        "status": "affected",
        "version": "Orchestrator 9.2.x",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "<=9.1.*",
        "status": "affected",
        "version": "Orchestrator 9.1.x",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-012.txt

21 Nov 2024 08:11Current

7.3High risk

Vulners AI Score7.3

CVSS 3.16.5 - 8.1

EPSS0.00127

SSVC

CWE-89