Hpe

Arubaos

40 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2025-37179

  • EPSS 0.05%
  • Veröffentlicht 13.01.2026 20:08:58
  • Zuletzt bearbeitet 23.01.2026 15:21:57

Multiple out-of-bounds read vulnerabilities were identified in a system component responsible for handling certain data buffers. Due to insufficient validation of maximum buffer size values, the process may attempt to read beyond the intended memory ...

7.5

CVE-2025-37178

  • EPSS 0.06%
  • Veröffentlicht 13.01.2026 20:08:23
  • Zuletzt bearbeitet 23.01.2026 16:06:12

Multiple out-of-bounds read vulnerabilities were identified in a system component responsible for handling certain data buffers. Due to insufficient validation of maximum buffer size values, the process may attempt to read beyond the intended memory ...

6.5

CVE-2025-37177

  • EPSS 0.08%
  • Veröffentlicht 13.01.2026 20:08:06
  • Zuletzt bearbeitet 23.01.2026 16:10:10

An arbitrary file deletion vulnerability has been identified in the command-line interface of mobility conductors running either AOS-10 or AOS-8 operating systems. Successful exploitation of this vulnerability could allow an authenticated remote mali...

7.2

CVE-2025-37176

  • EPSS 0.08%
  • Veröffentlicht 13.01.2026 20:07:50
  • Zuletzt bearbeitet 23.01.2026 16:12:02

A command injection vulnerability in AOS-8 allows an authenticated privileged user to alter a package header to inject shell commands, potentially affecting the execution of internal operations. Successful exploit could allow an authenticated malicio...

7.2

CVE-2025-37175

  • EPSS 0.07%
  • Veröffentlicht 13.01.2026 20:07:34
  • Zuletzt bearbeitet 23.01.2026 16:37:56

Arbitrary file upload vulnerability exists in the web-based management interface of mobility conductors running either AOS-10 or AOS-8 operating systems. Successful exploitation could allow an authenticated malicious actor to upload arbitrary files a...

7.2

CVE-2025-37174

  • EPSS 0.06%
  • Veröffentlicht 13.01.2026 20:05:33
  • Zuletzt bearbeitet 23.01.2026 16:38:12

Authenticated arbitrary file write vulnerability exists in the web-based management interface of mobility conductors running either AOS-10 or AOS-8 operating systems. Successful exploitation could allow an authenticated malicious actor to create or m...

7.2

CVE-2025-37173

  • EPSS 0.1%
  • Veröffentlicht 13.01.2026 20:04:57
  • Zuletzt bearbeitet 23.01.2026 16:44:30

An improper input handling vulnerability exists in the web-based management interface of mobility conductors running either AOS-10 or AOS-8 operating systems. Successful exploitation could allow an authenticated malicious actor with valid credentials...

7.2

CVE-2025-37172

  • EPSS 0.1%
  • Veröffentlicht 13.01.2026 20:04:38
  • Zuletzt bearbeitet 23.01.2026 16:45:03

Authenticated command injection vulnerabilities exist in the web-based management interface of mobility conductors running AOS-8 operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a...

7.2

CVE-2025-37171

  • EPSS 0.1%
  • Veröffentlicht 13.01.2026 20:04:22
  • Zuletzt bearbeitet 23.01.2026 16:45:38

Authenticated command injection vulnerabilities exist in the web-based management interface of mobility conductors running AOS-8 operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a...

7.2

CVE-2025-37170

  • EPSS 0.1%
  • Veröffentlicht 13.01.2026 20:04:03
  • Zuletzt bearbeitet 23.01.2026 16:46:09

Authenticated command injection vulnerabilities exist in the web-based management interface of mobility conductors running AOS-8 operating system. Successful exploitation could allow an authenticated malicious actor to execute arbitrary commands as a...