Arubanetworks

Edgeconnect Sd-wan Orchestrator

28 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-41136

  • EPSS 0.28%
  • Veröffentlicht 24.07.2024 21:15:11
  • Zuletzt bearbeitet 21.11.2024 09:32:18

An authenticated command injection vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateways Command Line Interface. Successful exploitation of this vulnerability results in the ability to execute arbitrary commands as a privileged...

7.2

CVE-2024-41135

  • EPSS 0.54%
  • Veröffentlicht 24.07.2024 20:15:04
  • Zuletzt bearbeitet 21.11.2024 09:32:18

A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result ...

7.2

CVE-2024-41134

  • EPSS 0.54%
  • Veröffentlicht 24.07.2024 20:15:04
  • Zuletzt bearbeitet 21.11.2024 09:32:18

A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result ...

7.2

CVE-2024-41133

  • EPSS 0.54%
  • Veröffentlicht 24.07.2024 20:15:04
  • Zuletzt bearbeitet 21.11.2024 09:32:17

A vulnerability exists in the HPE Aruba Networking EdgeConnect SD-WAN gateway's Command Line Interface that allows remote authenticated users to run arbitrary commands on the underlying host. Successful exploitation of this vulnerability will result ...

7.2

CVE-2024-33519

  • EPSS 0.5%
  • Veröffentlicht 24.07.2024 20:15:03
  • Zuletzt bearbeitet 21.11.2024 09:17:04

A vulnerability in the web-based management interface of HPE Aruba Networking EdgeConnect SD-WAN gateway could allow an authenticated remote attacker to conduct a server-side prototype pollution attack. Successful exploitation of this vulnerability c...

6.1

CVE-2024-22444

  • EPSS 0.28%
  • Veröffentlicht 24.07.2024 16:15:06
  • Zuletzt bearbeitet 21.11.2024 08:56:18

A vulnerability within the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow a remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the interface. A successful exploit could allow an a...

9

CVE-2024-41914

  • EPSS 0.11%
  • Veröffentlicht 24.07.2024 15:15:12
  • Zuletzt bearbeitet 21.11.2024 09:33:16

A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful ...

8.8

CVE-2024-22443

  • EPSS 0.59%
  • Veröffentlicht 24.07.2024 15:15:11
  • Zuletzt bearbeitet 21.11.2024 08:56:18

A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct a server-side prototype pollution attack. Successful exploitation of this vulnerability could allow an at...

6.5

CVE-2023-37435

  • EPSS 0.16%
  • Veröffentlicht 22.08.2023 19:16:38
  • Zuletzt bearbeitet 21.11.2024 08:11:42

Multiple vulnerabilities in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an authenticated remote attacker to conduct SQL injection attacks against the EdgeConnect SD-WAN Orchestrator instance. An attacker could ex...

5.3

CVE-2023-37440

  • EPSS 0.32%
  • Veröffentlicht 22.08.2023 19:16:38
  • Zuletzt bearbeitet 21.11.2024 08:11:42

A vulnerability in the web-based management interface of EdgeConnect SD-WAN Orchestrator could allow an unauthenticated remote attacker to conduct a server-side request forgery (SSRF) attack. A successful exploit allows an attacker to enumerate infor...