Lucene search
K

19189 matches found

CVE
CVE
added 2025/10/14 4:57 p.m.11 views

CVE-2025-37138

CVE-2025-37138 is an authenticated command-injection vulnerability in the CLI binary of ArubaOS AOS-10 GW and AOS-8 Controller/Mobility Conductor. Exploitation requires physical access and could allow a privileged user to execute arbitrary commands on the underlying OS. The provided documents do ...

6.2CVSS7.3AI score0.00687EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/10/14 4:57 p.m.6 views

CVE-2025-37137 Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI)

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS0.00333EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 4:57 p.m.3 views

EUVD-2025-34438

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.6AI score0.00333EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/14 4:57 p.m.2 views

CVE-2025-37137 Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI)

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.7AI score0.00333EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 4:57 p.m.14 views

CVE-2025-37137

CVE-2025-37137 describes an authenticated arbitrary file deletion vulnerability in the CLI of ArubaOS 8.x Controller/Mobility Conductor. The connected Nessus advisory references HPESBNW04957, noting multiple vulnerabilities across ArubaOS versions (AOS-8: 8.10.x up to 8.10.0.19, 8.12.x up to 8.12...

6.5CVSS6.7AI score0.00333EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/14 4:56 p.m.3 views

EUVD-2025-34439

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.6AI score0.00333EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/14 4:56 p.m.2 views

CVE-2025-37136 Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI)

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.7AI score0.00333EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 4:56 p.m.10 views

CVE-2025-37136

CVE-2025-37136 is an authenticated arbitrary file deletion vulnerability in the CLI of HPE ArubaOS 8 Controller/Mobility Conductor. The issue allows an authenticated remote attacker to delete arbitrary files within the affected system. Connected documents corroborate the issue in ArubaOS: multipl...

6.5CVSS6.7AI score0.00333EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/10/14 4:56 p.m.9 views

CVE-2025-37136 Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI)

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS0.00333EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/14 4:56 p.m.8 views

CVE-2025-37135 Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI)

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS0.00333EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/10/14 4:56 p.m.2 views

CVE-2025-37135 Authenticated Arbitrary File Deletion Vulnerabilities in AOS-8 Controller/Mobility Conductor Command Line Interface (CLI)

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.7AI score0.00333EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 4:56 p.m.5 views

EUVD-2025-34440

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbitrary files within the affected system...

6.5CVSS6.6AI score0.00333EPSS
Exploits0References2
CVE
CVE
added 2025/10/14 4:56 p.m.13 views

CVE-2025-37135

Affected product: ArubaOS (AOS-8 Controller/Mobility Conductor CLI). Vulnerability: CVE-2025-37135 — authenticated arbitrary file deletion via the command-line interface. Root cause: arbitrary file deletion vulnerability in the CLI as described in HPESBNW04957 notes for ArubaOS; specifics on vuln...

6.5CVSS6.7AI score0.00333EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/14 4:56 p.m.4 views

EUVD-2025-34441

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller/Mobility Conductor operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.4AI score0.01274EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/14 4:56 p.m.2 views

CVE-2025-37134 Authenticated Command Injection Vulnerability in the Low-Level Interface Library Affecting AOS-10 GW and AOS-8 Controller/Mobility Conductor Web-Based Management Interface

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller/Mobility Conductor operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.5AI score0.01274EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 4:56 p.m.9 views

CVE-2025-37134

ArubaOS AOS-8 Controller/Mobility Conductor CLI binary is affected by an authenticated command injection vulnerability (CVE-2025-37134). Exploitation could allow an authenticated attacker to run arbitrary commands with privileged OS privileges. The Nessus/HPESBNW04957 and related advisories refer...

7.2CVSS7.5AI score0.01274EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/10/14 4:54 p.m.3 views

CVE-2025-37133 Authenticated Command Injection Vulnerability in AOS-8 Controller/Mobility Conductor Web-Based Management Interface via the CLI Binaryalong with accounting controls for tracking and logging user activities and resource usage.

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller/Mobility Conductor operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.5AI score0.01274EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/14 4:54 p.m.3 views

EUVD-2025-34443

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller/Mobility Conductor operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS7.4AI score0.01274EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/10/14 4:54 p.m.9 views

CVE-2025-37133 Authenticated Command Injection Vulnerability in AOS-8 Controller/Mobility Conductor Web-Based Management Interface via the CLI Binaryalong with accounting controls for tracking and logging user activities and resource usage.

An authenticated command injection vulnerability exists in the CLI binary of an AOS-8 Controller/Mobility Conductor operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a privileged user on the underlying operating system...

7.2CVSS0.01274EPSS
Exploits0References1
CVE
CVE
added 2025/10/14 4:54 p.m.19 views

CVE-2025-37133

CVE-2025-37133 affects ArubaOS AOS-8 Controller/Mobility Conductor CLI binary. An authenticated attacker could inject commands with privileged execution rights. The Nessus plugin ARUBAOS-HPESBNW04957 notes multiple vulnerabilities including this CVE, and lists affected ArubaOS versions prior to c...

7.2CVSS7.5AI score0.01274EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder