Arubanetworks

Arubaos

215 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.2

CVE-2025-37175

  • EPSS 0.07%
  • Veröffentlicht 13.01.2026 20:07:34
  • Zuletzt bearbeitet 23.01.2026 16:37:56

Arbitrary file upload vulnerability exists in the web-based management interface of mobility conductors running either AOS-10 or AOS-8 operating systems. Successful exploitation could allow an authenticated malicious actor to upload arbitrary files a...

7.2

CVE-2025-37174

  • EPSS 0.06%
  • Veröffentlicht 13.01.2026 20:05:33
  • Zuletzt bearbeitet 23.01.2026 16:38:12

Authenticated arbitrary file write vulnerability exists in the web-based management interface of mobility conductors running either AOS-10 or AOS-8 operating systems. Successful exploitation could allow an authenticated malicious actor to create or m...

7.2

CVE-2025-37173

  • EPSS 0.09%
  • Veröffentlicht 13.01.2026 20:04:57
  • Zuletzt bearbeitet 23.01.2026 16:44:30

An improper input handling vulnerability exists in the web-based management interface of mobility conductors running either AOS-10 or AOS-8 operating systems. Successful exploitation could allow an authenticated malicious actor with valid credentials...

7.2

CVE-2025-37172

  • EPSS 0.09%
  • Veröffentlicht 13.01.2026 20:04:38
  • Zuletzt bearbeitet 23.01.2026 16:45:03

Authenticated command injection vulnerabilities exist in the web-based management interface of mobility conductors running AOS-8 operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a...

7.2

CVE-2025-37171

  • EPSS 0.09%
  • Veröffentlicht 13.01.2026 20:04:22
  • Zuletzt bearbeitet 23.01.2026 16:45:38

Authenticated command injection vulnerabilities exist in the web-based management interface of mobility conductors running AOS-8 operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a...

7.2

CVE-2025-37170

  • EPSS 0.09%
  • Veröffentlicht 13.01.2026 20:04:03
  • Zuletzt bearbeitet 23.01.2026 16:46:09

Authenticated command injection vulnerabilities exist in the web-based management interface of mobility conductors running AOS-8 operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a...

7.2

CVE-2025-37169

Medienbericht
  • EPSS 0.09%
  • Veröffentlicht 13.01.2026 20:03:33
  • Zuletzt bearbeitet 25.02.2026 19:43:16

A stack overflow vulnerability exists in the AOS-10 web-based management interface of a Mobility Gateway. Successful exploitation could allow an authenticated malicious actor to execute arbitrary code as a privileged user on the underlying operating ...

9.1

CVE-2025-37168

Medienbericht
  • EPSS 0.08%
  • Veröffentlicht 13.01.2026 20:03:08
  • Zuletzt bearbeitet 23.01.2026 14:53:05

Arbitrary file deletion vulnerability have been identified in a system function of mobility conductors running AOS-8 operating system. Successful exploitation of this vulnerability could allow an unauthenticated remote malicious actor to delete arbit...

8.8

CVE-2025-37162

  • EPSS 0.1%
  • Veröffentlicht 18.11.2025 19:23:20
  • Zuletzt bearbeitet 13.02.2026 16:22:59

A vulnerability in the command line interface of affected devices could allow an authenticated remote attacker to conduct a command injection attack. Successful exploitation could allow an attacker to execute arbitrary commands on the underlying oper...

7.5

CVE-2025-37161

  • EPSS 0.18%
  • Veröffentlicht 18.11.2025 19:21:23
  • Zuletzt bearbeitet 13.02.2026 16:31:47

A vulnerability in the web-based management interface of affected products could allow an unauthenticated remote attacker to cause a denial of service. Successful exploitation could allow an attacker to crash the system, preventing it from rebooting...