CVE-2024-22444

🗓️ 24 Jul 2024 15:17:18Reported by hpeType

Vulnerability in EdgeConnect SD-WAN Orchestrator web interfac

Reporter	Title	Published	Views	Family All 8
BDU FSTEC	The vulnerability in the web interface of the software-defined networking management software HPE Aruba Networking EdgeConnect SD-WAN Orchestrator allows a attacker to execute XSS attacks.	31 Jul 202400:00	–	bdu_fstec
Circl	CVE-2024-22444	24 Jul 202419:09	–	circl
CNNVD	Hewlett Packard Enterprise EdgeConnect SD-WAN 安全漏洞	24 Jul 202400:00	–	cnnvd
CVE	CVE-2024-22444	24 Jul 202415:17	–	cve
EUVD	EUVD-2024-19988	3 Oct 202520:07	–	euvd
NVD	CVE-2024-22444	24 Jul 202416:15	–	nvd
Positive Technologies	PT-2024-5253 · Riverbed · Edgeconnect Sd-Wan Orchestrator	23 Jul 202400:00	–	ptsecurity
Vulnrichment	CVE-2024-22444	24 Jul 202415:17	–	vulnrichment

[
  {
    "defaultStatus": "unaffected",
    "product": "HPE Aruba Networking EdgeConnect SD-WAN Orchestrator",
    "vendor": "Hewlett Packard Enterprise",
    "versions": [
      {
        "lessThanOrEqual": "<=9.4.1",
        "status": "affected",
        "version": "EdgeConnect SD-WAN Orchestrator 9.4.x: Orchestrator 9.4.1 (all builds) and below",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "<=9.3.2",
        "status": "affected",
        "version": "EdgeConnect SD-WAN Orchestrator 9.3.x: Orchestrator 9.3.2 (all builds) and below",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "<=9.2.9",
        "status": "affected",
        "version": "EdgeConnect SD-WAN Orchestrator 9.2.x: Orchestrator 9.2.9 (all builds) and below",
        "versionType": "semver"
      },
      {
        "lessThanOrEqual": "<=9.1.9",
        "status": "affected",
        "version": "EdgeConnect SD-WAN Orchestrator 9.1.x: Orchestrator 9.1.9 (all builds) and below",
        "versionType": "semver"
      }
    ]
  }
]

Source	Link
support	www.support.hpe.com/hpesc/public/docDisplay

24 Jul 2024 15:17Current

CVSS 3.16.1

EPSS0.00285