CVE-2013-2290
- EPSS 0.43%
- Veröffentlicht 28.03.2013 23:55:01
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in the dashboard of the ArubaOS Administration WebUI in Aruba Networks ArubaOS 6.2.x before 6.2.0.3, 6.1.3.x before 6.1.3.7, 6.1.x-FIPS before 6.1.4.3-FIPS, and 6.1.x-AirGroup before 6.1.3.6-AirGroup, as used ...
CVE-2009-3836
- EPSS 0.27%
- Veröffentlicht 02.11.2009 15:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
ArubaOS 3.3.1.x, 3.3.2.x, RN 3.1.x, 3.4.x, and 3.3.2.x-FIPS on the Aruba Mobility Controller allows remote attackers to cause a denial of service (Access Point crash) via a malformed 802.11 Association Request management frame.
CVE-2008-7095
- EPSS 0.3%
- Veröffentlicht 27.08.2009 18:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
The SNMP daemon in ArubaOS 3.3.2.6 in Aruba Mobility Controller does not restrict SNMP access, which allows remote attackers to (1) read all SNMP community strings via SNMP-COMMUNITY-MIB::snmpCommunityName (1.3.6.1.6.3.18.1.1.1.2) or SNMP-VIEW-BASED-...
- EPSS 0.38%
- Veröffentlicht 21.08.2009 14:30:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Aruba Mobility Controller running ArubaOS 3.3.1.16, and possibly other versions, installs the same default X.509 certificate for all installations, which allows remote attackers to bypass authentication. NOTE: this is only a vulnerability when the ad...
- EPSS 1.78%
- Veröffentlicht 16.05.2008 12:54:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
Unspecified vulnerability in the TACACS authentication component in Aruba Mobility Controller 3.1.x, 3.2.x, and 3.3.x allows remote authenticated users to gain privileges via unknown vectors.