Hpe

Arubaos

28 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.9

CVE-2025-37145

  • EPSS 0.06%
  • Veröffentlicht 14.10.2025 17:02:25
  • Zuletzt bearbeitet 12.11.2025 17:37:53

Arbitrary file download vulnerabilities exist in a low-level interface library in AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files th...

4.9

CVE-2025-37144

  • EPSS 0.06%
  • Veröffentlicht 14.10.2025 17:01:45
  • Zuletzt bearbeitet 12.11.2025 17:38:15

Arbitrary file download vulnerabilities exist in a low-level interface library in AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files th...

4.9

CVE-2025-37143

  • EPSS 0.04%
  • Veröffentlicht 14.10.2025 17:00:24
  • Zuletzt bearbeitet 12.11.2025 17:44:20

An arbitrary file download vulnerability exists in the web-based management interface of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an Authenticated malicious actor to download arbitrary f...

4.9

CVE-2025-37142

  • EPSS 0.04%
  • Veröffentlicht 14.10.2025 16:59:42
  • Zuletzt bearbeitet 12.11.2025 20:55:00

Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully...

4.9

CVE-2025-37141

  • EPSS 0.04%
  • Veröffentlicht 14.10.2025 16:59:14
  • Zuletzt bearbeitet 12.11.2025 20:55:31

Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully...

4.9

CVE-2025-37140

  • EPSS 0.04%
  • Veröffentlicht 14.10.2025 16:58:41
  • Zuletzt bearbeitet 12.11.2025 21:02:06

Arbitrary file download vulnerabilities exist in the CLI binary of AOS-10 GW and AOS-8 Controller/Mobility Conductor operating systems. Successful exploitation could allow an authenticated malicious actor to download arbitrary files through carefully...

6

CVE-2025-37139

  • EPSS 0.02%
  • Veröffentlicht 14.10.2025 16:58:14
  • Zuletzt bearbeitet 14.10.2025 20:15:35

A vulnerability in an AOS firmware binary allows an authenticated malicious actor to permanently delete necessary boot information. Successful exploitation may render the system unbootable, resulting in a Denial of Service that can only be resolved b...

6.2

CVE-2025-37138

  • EPSS 0.03%
  • Veröffentlicht 14.10.2025 16:57:50
  • Zuletzt bearbeitet 12.11.2025 21:05:32

An authenticated command injection vulnerability exists in the command line interface binary of AOS-10 GW and AOS-8 Controllers/Mobility Conductor operating system. Exploitation of this vulnerability requires physical access to the hardware controlle...

6.5

CVE-2025-37137

  • EPSS 0.08%
  • Veröffentlicht 14.10.2025 16:57:32
  • Zuletzt bearbeitet 12.11.2025 21:06:42

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbit...

6.5

CVE-2025-37136

  • EPSS 0.08%
  • Veröffentlicht 14.10.2025 16:56:58
  • Zuletzt bearbeitet 12.11.2025 21:09:44

Arbitrary file deletion vulnerabilities have been identified in the command-line interface of an AOS-8 Controller/Mobility Conductor. Successful exploitation of these vulnerabilities could allow an authenticated remote malicious actor to delete arbit...