Hewlett Packard Enterprise Hpe Aruba Networking Edgeconnect Sd-Wan vulnerabilities
5 known vulnerabilities affecting hewlett_packard_enterprise/hpe_aruba_networking_edgeconnect_sd-wan.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5
Vulnerabilities
Page 1 of 1
CVE-2024-41136P2HIGHCVSS 8.8≥ ECOS 9.3.x.x: 9.3.3.0 and below, ≤ <=9.3.3.0≥ ECOS 9.2.x.x: 9.2.9.0 and below, ≤ <=9.2.9.0+3 more2024-07-24
CVE-2024-41136 [HIGH] CWE-78 CVE-2024-41136: An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect SD-W
An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateways Command Line Interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged user on the underlying operating system.
nvd
CVE-2024-33519P3HIGHCVSS 7.2≥ ECOS 9.3.x.x: 9.3.3.0 and below, ≤ <=9.3.3.0≥ ECOS 9.2.x.x: 9.2.9.0 and below, ≤ <=9.2.9.0+3 more2024-07-24
CVE-2024-33519 [HIGH] CWE-1321 CVE-2024-33519: A vulnerability in the web-based management interface of HPE Aruba Networking EdgeConnect SD-WAN gat
A vulnerability in the web-based management interface of HPE Aruba Networking EdgeConnect SD-WAN gateway could allow an authenticated remote attacker to conduct a server-side prototype pollution attack. Successful exploitation of this vulnerability could allow an attacker to execute arbitrary commands on the underlying operating system leading to com
nvd
CVE-2024-41133P3HIGHCVSS 7.2≥ ECOS 9.3.x.x: 9.3.3.0 and below, ≤ <=9.3.3.0≥ ECOS 9.2.x.x: 9.2.9.0 and below, ≤ <=9.2.9.0+3 more2024-07-24
CVE-2024-41133 [HIGH] CWE-77 CVE-2024-41133: A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interfa
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as root on the underlying operating system leading to compl
nvd
CVE-2024-41135P3HIGHCVSS 7.2≥ ECOS 9.3.x.x: 9.3.3.0 and below, ≤ <=9.3.3.0≥ ECOS 9.2.x.x: 9.2.9.0 and below, ≤ <=9.2.9.0+3 more2024-07-24
CVE-2024-41135 [HIGH] CWE-77 CVE-2024-41135: A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interfa
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as root on the underlying operating system leading to compl
nvd
CVE-2024-41134P3HIGHCVSS 7.2≥ ECOS 9.3.x.x: 9.3.3.0 and below, ≤ <=9.3.3.0≥ ECOS 9.2.x.x: 9.2.9.0 and below, ≤ <=9.2.9.0+3 more2024-07-24
CVE-2024-41134 [HIGH] CWE-77 CVE-2024-41134: A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interfa
A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result in the ability to execute arbitrary commands as root on the underlying operating system leading to compl
nvd