CVE-2015-2201
- EPSS 0.45%
- Veröffentlicht 05.09.2023 18:15:08
- Zuletzt bearbeitet 21.11.2024 02:26:59
Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows VisualRF remote OS command execution and file disclosure by administrative users.
CVE-2015-2202
- EPSS 0.42%
- Veröffentlicht 05.09.2023 18:15:08
- Zuletzt bearbeitet 21.11.2024 02:26:59
Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows administrative users to escalate privileges to root on the underlying OS.
CVE-2015-1390
- EPSS 0.59%
- Veröffentlicht 05.09.2023 18:15:07
- Zuletzt bearbeitet 21.11.2024 02:25:19
Aruba AirWave before 8.0.7 allows XSS attacks agsinat an administrator.
CVE-2015-1391
- EPSS 0.13%
- Veröffentlicht 05.09.2023 18:15:07
- Zuletzt bearbeitet 21.11.2024 02:25:19
Aruba AirWave before 8.0.7 allows bypass of a CSRF protection mechanism.
CVE-2016-8526
- EPSS 13.18%
- Veröffentlicht 06.08.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 02:59:32
Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to an XML external entities (XXE). XXEs are a way to permit XML parsers to access storage that exist on external systems. If an unprivileged user is permitted to control the c...
CVE-2016-8527
- EPSS 56.32%
- Veröffentlicht 06.08.2018 20:29:00
- Zuletzt bearbeitet 21.11.2024 02:59:32
Aruba Airwave all versions up to, but not including, 8.2.3.1 is vulnerable to a reflected cross-site scripting (XSS). The vulnerability is present in the VisualRF component of AirWave. By exploiting this vulnerability, an attacker who can trick a log...