Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/05/23 4:50 a.m.14 views

CVE-2023-37437

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and modif...

6.5CVSS7.6AI score0.00569EPSS
Exploits0
cve
cve
added 2023/08/22 6:8 p.m.66 views

CVE-2023-37437

CVE-2023-37437 describes multiple SQL injection vulnerabilities in the web-based management interface of Aruba EdgeConnect SD-WAN Orchestrator. An authenticated remote attacker could exploit these flaws to read and modify data in the underlying database, potentially leading to exposure and corrup...

6.5CVSS6.8AI score0.00569EPSS
Exploits0References1Affected Software1
vulnrichment
vulnrichment
added 2023/08/22 6:8 p.m.21 views

CVE-2023-37437 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and...

6.5CVSS7.2AI score0.00569EPSS
Exploits0References1
cvelist
cvelist
added 2023/08/22 6:8 p.m.39 views

CVE-2023-37437 Authenticated SQL Injection Vulnerabilities in EdgeConnect SD-WAN Orchestrator Web-based Management Interface

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could exploit these vulnerabilities to obtain and...

6.5CVSS7AI score0.00569EPSS
Exploits0References1
Rows per page
Query Builder