Lucene search
K

4 matches found

OSV
OSV
added 2025/10/14 5:15 p.m.6 views

CVE-2025-37145

Arbitrary file download vulnerabilities exist in a low-level interface library in AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...

4.9CVSS5.9AI score0.00409EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 5:15 p.m.7 views

CVE-2025-37144

Arbitrary file download vulnerabilities exist in a low-level interface library in AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully constructed exploits...

4.9CVSS5.9AI score0.00409EPSS
Exploits0References1
OSV
OSV
added 2025/10/14 5:15 p.m.5 views

CVE-2025-37133

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller/Mobility Conductor operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS6AI score0.01274EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 5:1 p.m.18 views

CVE-2025-37144

CVE-2025-37144 describes an authentication-requiring arbitrary file download vulnerability in a low-level interface library of ArubaOS AOS-10 GW and AOS-8 Controller/Mobility Conductor. Exploitation could let an authenticated attacker download arbitrary files through crafted requests. The connect...

4.9CVSS6.5AI score0.00409EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder