CVE-2018-7064
CVE-2018-7064 describes a reflected cross-site scripting (XSS) vulnerability in an unauthenticated Aruba Instant web interface. An attacker could lure an IAP administrator into a malicious link to perform administrative actions on the Instant cluster or to exfiltrate the admin session cookie. The...