Lucene search

CVE-2022-37892

🗓️ 07 Oct 2022 00:00:00Reported by hpeType

A vulnerability in Aruba InstantOS and ArubaOS 10 web interface allows unauthenticated remote attacker to conduct stored cross-site scripting (XSS) attack

Reporter	Title	Published	Views	Family All 18
CVE	CVE-2022-37892	7 Oct 202218:15	–	cve
CNVD	Aruba Networks ArubaOS and InstantOS Cross-Site Scripting Vulnerability	29 Sep 202200:00	–	cnvd
NVD	CVE-2022-37892	7 Oct 202218:15	–	nvd
Prion	Cross site scripting	7 Oct 202218:15	–	prion
Tenable Nessus	Siemens SCALANCE W1750D Classic Buffer Overflow (CVE-2022-37885)	11 Apr 202300:00	–	nessus
Tenable Nessus	Siemens SCALANCE W1750D Classic Buffer Overflow (CVE-2022-37888)	11 Apr 202300:00	–	nessus
Tenable Nessus	Siemens SCALANCE W1750D Command Injection (CVE-2022-37893)	11 Apr 202300:00	–	nessus
Tenable Nessus	Siemens SCALANCE W1750D Classic Buffer Overflow (CVE-2022-37886)	11 Apr 202300:00	–	nessus
Tenable Nessus	Siemens SCALANCE W1750D Classic Buffer Overflow (CVE-2022-37887)	11 Apr 202300:00	–	nessus
Tenable Nessus	Siemens SCALANCE W1750D Classic Buffer Overflow (CVE-2022-37891)	11 Apr 202300:00	–	nessus

[
  {
    "vendor": "n/a",
    "product": "Aruba Access Points: 100 Series; 103 Series; 110 Series; 120 Series; 130 Series; 200 Series; 207 Series; 210 Series; 220 Series; 260 Series; 300 Series; 303 Series; 310 Series; 318 Series Hardened Access Points; 320 Series; 330 Series; 340 Series; 370 Series; 500 Series; 510 Series; 530 Series; 550 Series; 630 Series; 650 Series;",
    "versions": [
      {
        "version": "Aruba InstantOS 6.4.x:  6.4.4.8-4.2.4.20 and below",
        "status": "affected"
      },
      {
        "version": "Aruba InstantOS 6.5.x:  6.5.4.23 and below",
        "status": "affected"
      },
      {
        "version": "Aruba InstantOS 8.6.x:  8.6.0.18 and below",
        "status": "affected"
      },
      {
        "version": "Aruba InstantOS 8.7.x:  8.7.1.9 and below",
        "status": "affected"
      },
      {
        "version": "Aruba InstantOS 8.10.x: 8.10.0.1 and below",
        "status": "affected"
      },
      {
        "version": "ArubaOS 10.3.x:  10.3.1.0 and below",
        "status": "affected"
      }
    ]
  }
]

Source	Link
cert-portal	www.cert-portal.siemens.com/productcert/pdf/ssa-506569.pdf
arubanetworks	www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-014.txt

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Oct 2022 00:00Current

5.7Medium risk

Vulners AI Score5.7

EPSS0.001