5 matches found
CVE-2016-8526
Aruba AirWave is affected by CVE-2016-8526 (XXE) in all versions up to 8.2.3.1. The vulnerability arises from an XML External Entity injection that allows an XML processor with access to the local filesystem (running with web server permissions) to read files and potentially exfiltrate password-c...
Aruba AirWave 8.2.3 - XML External Entity Injection / Cross-Site Scripting Vulnerabilities
Exploit for hardware platform in category web applications title: XML External Entity Injection XXE, Reflected Cross Site Scripting product: Aruba AirWave vulnerable version: =8.2.3 fixed version: 8.2.3.1 CVE number: CVE-2016-8526, CVE-2016-8527 impact: high homepage: http://www.arubanetworks.com...
Aruba AirWave 8.2.3 - XML External Entity Injection Cross-Site Scripting
Aruba AirWave 8.2.3 - XML External Entity Injection Cross-Site Scripting SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: XML External Entity Injection XXE, Reflected Cross Site Scripting product: Aruba AirWave vulnerab...
CVE-2016-8526
creationtimestamp| type| source ---|---|--- 2017-03-01 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/41482...
Aruba AirWave 8.2.3 XXE Injection / Cross Site Scripting
SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: XML External Entity Injection XXE, Reflected Cross Site Scripting product: Aruba AirWave vulnerable version: =8.2.3 fixed version: 8.2.3.1 CVE number: CVE-2016-8526,...