Lucene search
K

18 matches found

Positive Technologies
Positive Technologies
added 2026/03/10 12:0 a.m.10 views

PT-2026-24411

Name of the Vulnerable Software and Affected Versions Aruba AOS-CX affected versions not specified Description A critical authentication bypass flaw exists in Aruba AOS-CX switches. This flaw allows an unauthenticated remote attacker to reset administrator passwords through the web management...

9.8CVSS5.8AI score0.00736EPSS
Exploits1References25
CNNVD
CNNVD
added 2025/11/18 12:0 a.m.4 views

HPE Aruba Networking AOS-CX 安全漏洞

HPE Aruba Networking AOS-CX is a series of switch devices from HPE America. A security vulnerability exists in the HPE Aruba Networking AOS-CX that stems from a command injection vulnerability that could lead to remote code execution...

8.8CVSS8.4AI score0.0061EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.15 views

EUVD-2021-12052

Malware in sbrugna...

4.9CVSS4.8AI score0.00296EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 7:59 a.m.13 views

CVE-2019-5320

Aruba Intelligent Edge Switch Series 2540, 2530, 2930F, 2930M, 2920, 5400R, and 3810M with firmware 16.08. before 16.08.0009, 16.09. before 16.09.0007, 16.10. before 16.10.0003 are vulnerable to Cross Site Scripting in the web UI, leading to injection of code...

6.1CVSS6.9AI score0.00767EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/09/06 6:15 p.m.6 views

CVE-2022-23691

A vulnerability exists in certain AOS-CX switch models which could allow an attacker with access to the recovery console to bypass normal authentication. A successful exploit allows an attacker to bypass system authentication and achieve total switch compromise in ArubaOS-CX Switches versions:...

6.8CVSS6.7AI score0.00345EPSS
Exploits0References2
OSV
OSV
added 2022/09/06 6:15 p.m.3 views

CVE-2022-23680

AOS-CX lacks Anti-CSRF protections in place for state-changing operations. This can potentially be exploited by an attacker to execute commands in the context of another user in ArubaOS-CX Switches versions: AOS-CX 10.10.xxxx: 10.10.0002 and below, AOS-CX 10.09.xxxx: 10.09.1020 and below, AOS-CX...

8.8CVSS5.9AI score0.00371EPSS
Exploits0References1
OSV
OSV
added 2022/09/06 6:15 p.m.4 views

CVE-2022-23679

AOS-CX lacks Anti-CSRF protections in place for state-changing operations. This can potentially be exploited by an attacker to execute commands in the context of another user in ArubaOS-CX Switches versions: AOS-CX 10.10.xxxx: 10.10.0002 and below, AOS-CX 10.09.xxxx: 10.09.1020 and below, AOS-CX...

8.8CVSS5.9AI score0.00371EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/09/06 12:0 a.m.4 views

PT-2022-16197 · Aruba · Arubaos-Cx Switches

Name of the Vulnerable Software and Affected Versions: ArubaOS-CX Switches versions 10.09.1010 and below ArubaOS-CX Switches versions 10.08.1050 and below ArubaOS-CX Switches versions 10.06.0190 and below Description: Multiple vulnerabilities exist in the processing of packet data by the LLDP...

4.3CVSS4.8AI score0.00298EPSS
Exploits0References3
CNNVD
CNNVD
added 2022/08/30 12:0 a.m.5 views

Aruba AOS-CX 授权问题漏洞

Aruba AOS-CX is a modern programmable network from Aruba, USA. A security vulnerability exists in the Aruba AOS-CX, no information about this vulnerability is available at this time, please stay tuned to CNNVD or the vendor announcement...

6.8CVSS6.5AI score0.00345EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/05/04 12:0 a.m.5 views

The vulnerability of the NanoSSL library in microprogramming software for Aruba switches such as Aruba 5400R, Aruba 3810, Aruba 2920, Aruba 2930F, Aruba 2930M, Aruba 2530, and Aruba 2540 allows a hacker to execute arbitrary code.

The vulnerability of the NanoSSL microprogramming software library used in Aruba 5400R, Aruba 3810, Aruba 2920, Aruba 2930F, Aruba 2930M, Aruba 2530, and Aruba 2540 switches is related to improper code generation management. Exploiting this vulnerability allows a remote attacker to execute...

10CVSS6AI score0.19536EPSS
Exploits0References3Affected Software7
The Hacker News
The Hacker News
added 2022/05/03 2:14 p.m.66 views

Critical TLStorm 2.0 Bugs Affect Widely-Used Aruba and Avaya Network Switches

Cybersecurity researchers have detailed as many as five severe security flaws in the implementation of TLS protocol in several models of Aruba and Avaya network switches that could be abused to gain remote access to enterprise networks and steal valuable information. The findings follow the March...

0.9AI score0.21877EPSS
Exploits0
OSV
OSV
added 2022/03/02 10:15 p.m.4 views

CVE-2021-41003

Multiple unauthenticated command injection vulnerabilities were discovered in the AOS-CX API interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series...

6.1CVSS6.7AI score0.00795EPSS
Exploits0References1
OSV
OSV
added 2022/03/02 10:15 p.m.3 views

CVE-2021-41002

Multiple authenticated remote path traversal vulnerabilities were discovered in the AOS-CX command line interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch...

8.1CVSS7.2AI score0.00966EPSS
Exploits0References1
OSV
OSV
added 2022/03/02 10:15 p.m.4 views

CVE-2021-41001

An authenticated remote code execution vulnerability was discovered in the AOS-CX Network Analytics Engine NAE in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch...

8.8CVSS7.7AI score0.02569EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2022/03/02 10:15 p.m.3 views

CVE-2021-41000

Multiple authenticated remote code execution vulnerabilities were discovered in the AOS-CX command line interface in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch...

9CVSS7.7AI score0.02499EPSS
Exploits0References2
OSV
OSV
added 2021/07/22 2:15 p.m.3 views

CVE-2021-29149

A local bypass security restrictions vulnerability was discovered in Aruba CX 6200F Switch Series, Aruba 6300 Switch Series, Aruba 6400 Switch Series, Aruba 8320 Switch Series, Aruba 8325 Switch Series, Aruba 8400 Switch Series, Aruba CX 8360 Switch Series versions: Aruba AOS-CX firmware:...

6.2CVSS6.5AI score0.00249EPSS
Exploits0References1
NVD
NVD
added 2020/08/26 11:15 p.m.17 views

CVE-2019-5320

Aruba Intelligent Edge Switch Series 2540, 2530, 2930F, 2930M, 2920, 5400R, and 3810M with firmware 16.08. before 16.08.0009, 16.09. before 16.09.0007, 16.10. before 16.10.0003 are vulnerable to Cross Site Scripting in the web UI, leading to injection of code...

6.1CVSS6.3AI score0.00767EPSS
Exploits0References1
OSV
OSV
added 2020/02/13 12:15 a.m.3 views

CVE-2019-5322

A remotely exploitable information disclosure vulnerability is present in Aruba Intelligent Edge Switch models 5400, 3810, 2920, 2930, 2530 with GigT port, 2530 10/100 port, or 2540. The vulnerability impacts firmware 16.08. before 16.08.0009, 16.09. before 16.09.0007 and 16.10. before 16.10.0003...

7.5CVSS5.8AI score0.01162EPSS
Exploits0References1
Rows per page
Query Builder