Arubanetworks Sd-Wan vulnerabilities
62 known vulnerabilities affecting arubanetworks/sd-wan.
Total CVEs
62
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL15HIGH32MEDIUM14LOW1
Vulnerabilities
Page 1 of 4
CVE-2023-22757CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22757 [CRITICAL] CWE-120 CVE-2023-22757: There are buffer overflow vulnerabilities in multiple underlying operating system processes that cou
There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying oper
nvd
CVE-2023-22749CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22749 [CRITICAL] CWE-77 CVE-2023-22749:
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged us
nvd
CVE-2023-22756CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22756 [CRITICAL] CWE-120 CVE-2023-22756: There are buffer overflow vulnerabilities in multiple underlying operating system processes that cou
There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying oper
nvd
CVE-2023-22754CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22754 [CRITICAL] CWE-120 CVE-2023-22754: There are buffer overflow vulnerabilities in multiple underlying operating system processes that cou
There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying oper
nvd
CVE-2023-22751CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22751 [CRITICAL] CWE-787 CVE-2023-22751: There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code
There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged
nvd
CVE-2023-22750CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22750 [CRITICAL] CWE-77 CVE-2023-22750:
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged us
nvd
CVE-2023-22747CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22747 [CRITICAL] CWE-77 CVE-2023-22747: There are multiple command injection vulnerabilities that could lead to unauthenticated remote code
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged use
nvd
CVE-2023-22752CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22752 [CRITICAL] CWE-787 CVE-2023-22752: There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code
There are stack-based buffer overflow vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged
nvd
CVE-2023-22753CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22753 [CRITICAL] CWE-120 CVE-2023-22753: There are buffer overflow vulnerabilities in multiple underlying operating system processes that cou
There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying oper
nvd
CVE-2023-22748CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22748 [CRITICAL] CWE-77 CVE-2023-22748:
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code
There are multiple command injection vulnerabilities that could lead to unauthenticated remote code execution by sending specially crafted packets destined to the PAPI (Aruba Networks access point management protocol) UDP port (8211). Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged us
nvd
CVE-2023-22755CRITICALCVSS 9.8≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22755 [CRITICAL] CWE-120 CVE-2023-22755: There are buffer overflow vulnerabilities in multiple underlying operating system processes that cou
There are buffer overflow vulnerabilities in multiple underlying operating system processes that could lead to unauthenticated remote code execution by sending specially crafted packets via the PAPI protocol. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary code as a privileged user on the underlying oper
nvd
CVE-2023-22769HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22769 [HIGH] CWE-77 CVE-2023-22769: Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Success
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
nvd
CVE-2023-22770HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22770 [HIGH] CWE-77 CVE-2023-22770: Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Success
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
nvd
CVE-2023-22761HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22761 [HIGH] CWE-77 CVE-2023-22761: Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management int
Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to fully compromise the underlying operating system on the devic
nvd
CVE-2023-22766HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22766 [HIGH] CWE-77 CVE-2023-22766: Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Success
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
nvd
CVE-2023-22765HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22765 [HIGH] CWE-77 CVE-2023-22765: Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Success
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
nvd
CVE-2023-22760HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22760 [HIGH] CWE-77 CVE-2023-22760: Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management int
Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to fully compromise the underlying operating system on the devic
nvd
CVE-2023-22758HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22758 [HIGH] CWE-77 CVE-2023-22758: Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management int
Authenticated remote command injection vulnerabilities exist in the ArubaOS web-based management interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. This allows an attacker to fully compromise the underlying operating system on the devic
nvd
CVE-2023-22768HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22768 [HIGH] CWE-77 CVE-2023-22768: Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Success
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
nvd
CVE-2023-22762HIGHCVSS 7.2≥ 8.7.0.0-2.3.0.0, ≤ 8.7.0.0-2.3.0.82023-03-01
CVE-2023-22762 [HIGH] CWE-77 CVE-2023-22762: Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Success
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
nvd
1 / 4Next →