486 matches found
Privilege escalation
A remote escalation of privilege vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
Design/Logic Flaw
A remote execution of arbitrary commandss vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
Design/Logic Flaw
A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
Server side request forgery (ssrf)
A remote server-side request forgery ssrf vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
Remote code execution
A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
Design/Logic Flaw
A remote unauthorized access vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-7127
Aruba Airwave Software before version 1.3.2 has a remote unauthenticated arbitrary code execution vulnerability. The available documents identify the affected product and vulnerable range but do not provide root-cause details, specific exploit information, or official remediation steps. No vendor...
CVE-2020-7127
A remote unauthenticated arbitrary code execution vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-7126
A remote server-side request forgery ssrf vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-7126
CVE-2020-7126 describes a remote server-side request forgery (SSRF) vulnerability affecting Aruba Airwave Software prior to version 1.3.2. The connected documents corroborate: Aruba Airwave SSRF with the same version constraint; no concrete exploit details, impacted components, root cause, or rem...
CVE-2020-7125
A remote escalation of privilege vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-7125
Aruba Airwave Software is affected by a remote elevation of privilege vulnerability in versions prior to 1.3.2. The issue is documented across multiple feeds (NVD, Red Hat, CNVD, etc.) with no exploitation details provided in the sources. Affected product: Aruba Airwave Software; vulnerable compo...
CVE-2020-7124
A remote unauthorized access vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-7124
CVE-2020-7124 corresponds to a remote unauthorized access vulnerability in Aruba Airwave Software prior to version 1.3.2. Multiple connected sources (Red Hat, CNVD, NVD, CVE lists) consistently describe an uncontrolled remote access issue affecting Aruba Airwave; the core product is Aruba Airwave...
CVE-2020-24632
A remote execution of arbitrary commandss vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-24632
CVE-2020-24632 concerns Aruba Airwave Software before version 1.3.2, where a remote command execution vulnerability allows an attacker to run arbitrary commands. Affected component: Aruba Airwave Software; root cause details are not explicitly described in the provided documents. The vulnerabilit...
CVE-2020-24631
A remote execution of arbitrary commands vulnerability was discovered in Aruba Airwave Software versions: Prior to 1.3.2...
CVE-2020-24631
CVE-2020-24631 is a remote command execution vulnerability affecting Aruba Airwave Software versions prior to 1.3.2. All connected documents identify Aruba Airwave as the affected product, with the issue described as allowing execution of arbitrary commands remotely. The root cause details are no...
HPESBNW04041 rev.3 - Aruba Products, TCP SACK PANIC - Kernel Vulnerabilities
Potential Security Impact: Local: Denial of Service DoS SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Airwave Software 8.2.9.1 and below Aruba ClearPass Policy Manager 6.7.12, 6.8.3 and below Aruba CX 6200F Switch Series 10.2 and below Aruba 6300 Switch Series 10.2 and bel...
CVE-2019-5323
There are command injection vulnerabilities present in the AirWave application. Certain input fields controlled by an administrative user are not properly sanitized before being parsed by AirWave. If conditions are met, an attacker can obtain command execution on the host...