CVE-2021-37729
published 2021-09-07CVE-2021-37729: A remote path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to…
medium6.5CVSS 3.1
AVNACLPRHUINSUCNIHAH
A remote path traversal vulnerability was discovered in Aruba SD-WAN Software and Gateways; Aruba Operating System Software version(s): Prior to 8.6.0.0-2.2.0.4; Prior to 8.7.1.3, 8.6.0.9, 8.5.0.12, 8.3.0.16, 6.5.4.19, 6.4.4.25. Aruba has released patches for Aruba SD-WAN Software and Gateways and ArubaOS that address this security vulnerability.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| arubanetworks | arubaos | >= 6.4.4.0 < 6.4.4.25 | 6.4.4.25 |
| arubanetworks | arubaos | >= 6.5.4.0 < 6.5.4.19 | 6.5.4.19 |
| arubanetworks | arubaos | >= 8.3.0.0 < 8.3.0.16 | 8.3.0.16 |
| arubanetworks | arubaos | >= 8.5.0.0 < 8.5.0.12 | 8.5.0.12 |
| arubanetworks | arubaos | >= 8.6.0.0 < 8.6.0.9 | 8.6.0.9 |
| arubanetworks | arubaos | >= 8.7.0.0 < 8.7.1.3 | 8.7.1.3 |
| arubanetworks | sd-wan | >= 2.2.0.0 < 2.2.0.4 | 2.2.0.4 |
| siemens | scalance_w1750d_firmware | < 8.7.1.3 | 8.7.1.3 |