Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 12:58 a.m.15 views

CVE-2022-43518

An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise web interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeConnect Enterprise...

6.5CVSS6.7AI score0.00703EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.21 views

CVE-2022-44532

An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeConnect...

6.5CVSS0.00703EPSS
Exploits0References1
OSV
OSV
added 2022/12/12 1:15 p.m.5 views

CVE-2022-43518

An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise web interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeConnect Enterprise...

6.5CVSS5.9AI score0.00703EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.20 views

CVE-2022-43541

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

7.2CVSS0.01525EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.28 views

CVE-2022-43518

An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise web interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeConnect Enterprise...

6.5CVSS0.00703EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.26 views

CVE-2022-37924

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

7.2CVSS0.01525EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.21 views

CVE-2022-37919

A vulnerability exists in the API of Aruba EdgeConnect Enterprise. An unauthenticated attacker can exploit this condition via the web-based management interface to create a denial-of-service condition which prevents the appliance from properly responding to API requests in Aruba EdgeConnect...

7.5CVSS0.00694EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.23 views

CVE-2022-37925

A vulnerability within the web-based management interface of Aruba EdgeConnect Enterprise could allow a remote attacker to conduct a reflected cross-site scripting XSS attack against a user of the interface. A successful exploit could allow an attacker to execute arbitrary script code in a victim...

6.1CVSS0.0049EPSS
Exploits0References1
NVD
NVD
added 2022/12/12 1:15 p.m.29 views

CVE-2022-37921

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

7.2CVSS0.01365EPSS
Exploits0References1
Prion
Prion
added 2022/12/12 1:15 p.m.21 views

Design/Logic Flaw

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

5.8CVSS7.2AI score0.01365EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/12/12 1:15 p.m.22 views

Design/Logic Flaw

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

5.8CVSS7.2AI score0.01365EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/12/12 1:15 p.m.19 views

Cross site scripting

A vulnerability within the web-based management interface of EdgeConnect Enterprise could allow a remote attacker to conduct a stored cross-site scripting XSS attack against a user of the interface by uploading a specially crafted file. A successful exploit could allow an attacker to execute...

4.9CVSS5.3AI score0.00469EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/12/12 1:15 p.m.18 views

Path traversal

An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeConnect...

4CVSS6.4AI score0.00703EPSS
Exploits0References1Affected Software1
Prion
Prion
added 2022/12/12 1:15 p.m.17 views

Design/Logic Flaw

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

5.8CVSS7.2AI score0.01525EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2022/12/12 12:0 a.m.5 views

Aruba Networks EdgeConnect 跨站脚本漏洞

Aruba Networks EdgeConnect is an edge connectivity management platform from Aruba Networks, USA. A security vulnerability exists in Aruba Networks EdgeConnect that stems from a flaw in the web-based management interface that could allow a remote attacker to conduct a Reflective Cross-Site Scripti...

5.5CVSS6.2AI score0.00469EPSS
Exploits0References2
Cvelist
Cvelist
added 2022/11/30 7:32 p.m.23 views

CVE-2022-44532

An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise command line interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeConnect...

4.9CVSS6.7AI score0.00703EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/30 7:26 p.m.25 views

CVE-2022-43518

An authenticated path traversal vulnerability exists in the Aruba EdgeConnect Enterprise web interface. Successful exploitation of this vulnerability results in the ability to read arbitrary files on the underlying operating system, including sensitive system files in Aruba EdgeConnect Enterprise...

4.9CVSS6.5AI score0.00703EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/30 7:19 p.m.28 views

CVE-2022-37924

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

7.2CVSS7.5AI score0.01525EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/11/30 7:15 p.m.25 views

CVE-2022-37922

Vulnerabilities in the Aruba EdgeConnect Enterprise command line interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete...

7.2CVSS7.5AI score0.01365EPSS
Exploits0References1
CVE
CVE
added 2022/11/30 7:5 p.m.65 views

CVE-2022-37919

The CVE describes an unauthenticated denial-of-service in Aruba EdgeConnect Enterprise API accessible via the web-based management interface. Affected Software: Aruba EdgeConnect Enterprise (ECOS) 9.2.1.0 and below, 9.1.3.0 and below, 9.0.7.0 and below, and 8.3.7.1 and below. Root cause: API/QoS ...

7.5CVSS7.5AI score0.00694EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder