Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:49 a.m.8 views

CVE-2023-37436

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and modif...

6.5CVSS7.6AI score0.00569EPSS
Exploits0
NVD
NVD
added 2023/08/22 7:16 p.m.30 views

CVE-2023-37436

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and...

6.5CVSS6.8AI score0.00569EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/08/22 6:8 p.m.14 views

CVE-2023-37436 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and...

6.5CVSS7.2AI score0.00569EPSS
Exploits0References1
CVE
CVE
added 2023/08/22 6:8 p.m.57 views

CVE-2023-37436

CVE-2023-37436 affects Aruba Networks EdgeConnect SD-WAN Orchestrator web-based management interface. The connected sources describe multiple SQL injection vulnerabilities that can be exploited by an authenticated remote attacker to obtain and modify data in the underlying database, potentially e...

6.5CVSS6.8AI score0.00569EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder