CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

A remote code execution vulnerability is present in network-listening components in some versions of ArubaOS. An attacker with the ability to transmit specially-crafted IP traffic to a mobility controller could exploit this vulnerability and cause a process crash or to execute arbitrary code with...

9.8CVSS8.4AI score0.05851EPSS

Exploits1References1

Prion•added 2019/09/13 5:15 p.m.•16 views

Remote code execution

9.3CVSS9.6AI score0.05851EPSS

Exploits1References2Affected Software1

Cvelist•added 2019/09/13 4:49 p.m.•21 views

CVE-2018-7081

9.8AI score0.05851EPSS

Exploits1References2

CNVD•added 2015/09/27 12:0 a.m.•1 views

Aruba Networks Mobility Controller Cross-Site Scripting Vulnerability

Aruba Networks Mobility Controller is a suite of solutions that provide mobile access for the enterprise. A cross-site scripting vulnerability in Aruba Networks Mobility Controller allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to...

6.2AI score

Exploits0References1

CNVD•added 2015/09/27 12:0 a.m.•2 views

Aruba Networks Mobility Controller Cross-Site Request Forgery Vulnerability

Aruba Networks Mobility Controller is a suite of solutions that provide mobile access for the enterprise. A cross-site request forgery vulnerability exists in Aruba Networks Mobility Controller, which allows remote attackers to construct malicious URIs, trick users into parsing them, and can...

6.9AI score

Exploits0References1

seebug.org•added 2014/07/01 12:0 a.m.•22 views

Aruba MC-800 Mobility Controller Screens Directory HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26465/info Aruba MC-800 Mobility Controller is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied input data. Exploiting this issue may allow an attacker to execute HTML and...

7.1AI score

Exploits0

securityvulns•added 2011/02/03 12:0 a.m.•46 views

Aruba Mobility Controller security vulnerabilities

DoS and authentication bypass...

3.2AI score

Exploits0References1Affected Software1

CVE•added 2009/11/02 3:0 p.m.•57 views

CVE-2009-3836

CVE-2009-3836 affects ArubaOS (3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS) on Aruba Mobility Controller. The vulnerability enables remote attackers to trigger a denial of service resulting in an Access Point crash by sending a malformed 802.11 Association Request management frame. Connec...

6.1CVSS6.7AI score0.00914EPSS

Exploits0References4Affected Software2

Cvelist•added 2009/11/02 3:0 p.m.•36 views

CVE-2009-3836

ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service Access Point crash via a malformed 802.11 Association Request management frame...

6.6AI score0.00914EPSS

Exploits0References4

Prion•added 2009/08/27 6:30 p.m.•22 views

Code injection

The SNMP daemon in ArubaOS 3.3.2.6 in Aruba Mobility Controller does not restrict SNMP access, which allows remote attackers to 1 read all SNMP community strings via SNMP-COMMUNITY-MIB::snmpCommunityName 1.3.6.1.6.3.18.1.1.1.2 or SNMP-VIEW-BASED-ACM-MIB::vacmGroupName 1.3.6.1.6.3.16.1.2.1.3 with...

7.8CVSS7.2AI score0.01411EPSS

Exploits0References3Affected Software1

NVD•added 2009/08/27 6:30 p.m.•19 views

CVE-2008-7095

7.8CVSS6.6AI score0.01411EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by