1885 matches found
CVE-2021-37726
A remote buffer overflow vulnerability was discovered in HPE Aruba Instant IAP versions: Aruba Instant 8.7.x.x: 8.7.0.0 through 8.7.1.2. Aruba has released patches for Aruba Instant IAP that address this security vulnerability...
CVE-2021-37730
A remote arbitrary command execution vulnerability was discovered in HPE Aruba Instant IAP versions: Aruba Instant 6.4.x.x: 6.4.4.8-4.2.4.18 and below; Aruba Instant 6.5.x.x: 6.5.4.20 and below; Aruba Instant 8.5.x.x: 8.5.0.12 and below; Aruba Instant 8.6.x.x: 8.6.0.11 and below; Aruba Instant...
CVE-2021-37735
CVE-2021-37735 is a remote denial-of-service vulnerability affecting Aruba Instant (IAP) platforms. Affected are Aruba Instant 6.5.x.x (6.5.4.18 and below), 8.5.x.x (8.5.0.10 and below), and 8.6.x.x (8.6.0.4 and below). The issue is tied to a path traversal weakness in the Aruba Instant environme...
CVE-2021-37735
A remote denial of service vulnerability was discovered in Aruba Instant versions: Aruba Instant 6.5.x.x: 6.5.4.18 and below; Aruba Instant 8.5.x.x: 8.5.0.10 and below; Aruba Instant 8.6.x.x: 8.6.0.4 and below. Aruba has released patches for Aruba Instant IAP that address this security...
CVE-2021-37732
Aruba Instant (IAP) exposes a remote arbitrary command execution vulnerability (CVE-2021-37732) in its web-based management UI. Affected are Aruba Instant 6.4.x.x (6.4.4.8-4.2.4.17 and below), 6.5.x.x (6.5.4.18 and below), 8.5.x.x (8.5.0.11 and below), 8.6.x.x (8.6.0.6 and below), and 8.7.x.x (8....
CVE-2021-37727
CVE-2021-37727 describes a remote command injection in HPE Aruba Instant (IAP) CLI/Web UI. Root cause: improper neutralization of special elements used in a command. Impact: unauthenticated remote arbitrary command execution with high risk, as documented (CVSSv3 base 7.2). Affected: Aruba Instant...
CVE-2021-37730
CVE-2021-37730 concerns a remote arbitrary command execution in HPE Aruba Instant (IAP). The vulnerability affects Aruba Instant versions across 6.4.x, 6.5.x, 8.5.x, 8.6.x and 8.7.x (as listed in the NVD entry). The 4.2.x ENISA/ICS/CISA-style documentation describes multiple vectors: a command-in...
CVE-2021-37726
A remote buffer overflow vulnerability was discovered in HPE Aruba Instant IAP versions: Aruba Instant 8.7.x.x: 8.7.0.0 through 8.7.1.2. Aruba has released patches for Aruba Instant IAP that address this security vulnerability...
CVE-2021-37726
CVE-2021-37726 : A remote buffer overflow vulnerability in HPE Aruba Instant (IAP) affects Aruba Instant 8.7.x.x, specifically 8.7.0.0 through 8.7.1.2. The issue originates from a memory buffer overflow in the product’s components (as described in multiple sources) and allows unauthenticated remo...
Aruba Instant Buffer Overflow Vulnerability
Aruba Instant is a wireless network. Aruba Instant provides the only Wi-Fi solution that is easy to set up.A buffer overflow vulnerability exists in Aruba Instant, which stems from a boundary error when processing PAPI requests sent to port 8211/UDP. A remote attacker could exploit this...
Aruba Instant Command Injection Vulnerability (CNVD-2021-89447)
Aruba Instant is a wireless network. Providing the only Wi-Fi solution that is easy to set up, Aruba Instant is vulnerable to a command injection vulnerability that stems from incorrect input validation in the command line interface. An attacker could exploit the vulnerability to escalate...
Aruba Instant Command Injection Vulnerability (CNVD-2021-89450)
Aruba Instant is a wireless network. Providing the only Wi-Fi solution that is easy to set up, Aruba Instant is vulnerable to a command injection vulnerability, which is caused by incorrect input validation in the web interface. An attacker could exploit the vulnerability to send a carefully...
Aruba Instant Path Traversal Vulnerability
Aruba Instant is a wireless network. Aruba Instant provides the only Wi-Fi solution that is easy to set up.A path traversal vulnerability exists in Aruba Instant, which stems from an input validation error when processing directory traversal sequences in the on-the-fly command line interface. An...
Aruba Instant 路径遍历漏洞
Aruba Instant is a wireless network. Aruba Instant provides the only Wi-Fi solution that is easy to set up.A path traversal vulnerability exists in Aruba Instant, which stems from an input validation error when processing directory traversal sequences in the on-the-fly command line interface. An...
Aruba Instant 操作系统命令注入漏洞
Aruba Instant is a wireless network. Providing the only Wi-Fi solution that is easy to set up, Aruba Instant is vulnerable to a command injection vulnerability, which is caused by incorrect input validation in the web interface. An attacker could exploit the vulnerability to send a carefully...
Aruba Instant 格式化字符串错误漏洞
Aruba Instant is a wireless network from Aruba USA. provides the only Wi-Fi solution that is easy to set up. Aruba Instant suffers from a Formatting String Error vulnerability that originates from a formatting string error in the Instant Command Line Interface. The vulnerability allows remote use...
Aruba Instant 缓冲区错误漏洞
Aruba Instant is a wireless network. Aruba Instant provides the only Wi-Fi solution that is easy to set up.A buffer overflow vulnerability exists in Aruba Instant, which stems from a boundary error when processing PAPI requests sent to port 8211/UDP. A remote attacker could exploit this...
Aruba Instant 操作系统命令注入漏洞
Aruba Instant is a wireless network. Providing the only Wi-Fi solution that is easy to set up, Aruba Instant is vulnerable to a command injection vulnerability that stems from incorrect input validation in the command line interface. An attacker could exploit the vulnerability to escalate...
Aruba Instant 操作系统命令注入漏洞
Aruba Instant is a wireless network from Aruba, Inc. provides the only Wi-Fi solution that is easy to set up.Aruba Instant is vulnerable to an operating system command injection vulnerability that stems from incorrect input validation in the command line interface. A remote authenticated attacker...
Fedora: Security Advisory for matrix-synapse (FEDORA-2021-f12fdca1bf)
The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...