← Back

Arubanetworks

arubanetworks

578 CVEs • 213 products

Products (213)

Click to collapse
Toggle
Arubaos
arubaos
227 CVEs
Clearpass Policy Manager
clearpass_policy_manager
136 CVEs
Sd Wan
sd-wan
88 CVEs
Clearpass
clearpass
36 CVEs
Airwave
airwave
36 CVEs
Instant
instant
33 CVEs
Edgeconnect Sd Wan Orchestrator
edgeconnect_sd-wan_orchestrator
29 CVEs
Edgeconnect Enterprise
edgeconnect_enterprise
25 CVEs
Aruba Edgeconnect Enterprise Orchestrator
aruba_edgeconnect_enterprise_orchestrator
16 CVEs
Aruba Instant
aruba_instant
12 CVEs
Airwave Glass
airwave_glass
12 CVEs
Aos Cx
aos-cx
12 CVEs
2920 Firmware
2920_firmware
5 CVEs
2540 Firmware
2540_firmware
5 CVEs
Fabric Composer
fabric_composer
5 CVEs
Aruba Mobility Controller
aruba_mobility__controller
4 CVEs
2530 Firmware
2530_firmware
4 CVEs
5400r Firmware
5400r_firmware
3 CVEs
3810 Firmware
3810_firmware
3 CVEs
2930 Firmware
2930_firmware
3 CVEs
Aos Cx Firmware
aos-cx_firmware
3 CVEs
Cx 6200f Firmware
cx_6200f_firmware
2 CVEs
Cx 6300 Firmware
cx_6300_firmware
2 CVEs
Cx 6400 Firmware
cx_6400_firmware
2 CVEs
Cx 8320 Firmware
cx_8320_firmware
2 CVEs
Cx 8325 Firmware
cx_8325_firmware
2 CVEs
Cx 8400 Firmware
cx_8400_firmware
2 CVEs
5406r Firmware
5406r_firmware
2 CVEs
3810m Firmware
3810m_firmware
2 CVEs
2930f Firmware
2930f_firmware
2 CVEs
2930m Firmware
2930m_firmware
2 CVEs
5412r Firmware
5412r_firmware
2 CVEs
2615 Firmware
2615_firmware
2 CVEs
2620 Firmware
2620_firmware
2 CVEs
2915 Firmware
2915_firmware
2 CVEs
Clearpass Guest
clearpass_guest
1 CVE
Instant Access Point Firmware
instant_access_point_firmware
1 CVE
Web Management Portal
web_management_portal
1 CVE
203rp Firmware
203rp_firmware
1 CVE
203r Firmware
203r_firmware
1 CVE
Ap 300 Series Access Points Firmware
ap-300_series_access_points_firmware
1 CVE
Ap 300 Series Instant Access Points Firmware
ap-300_series_instant_access_points_firmware
1 CVE
2530 With Gigt Port Firmware
2530_with_gigt_port_firmware
1 CVE
2530 10/100 Port Firmware
2530_10/100_port_firmware
1 CVE
Analytics And Location Engine
analytics_and_location_engine
1 CVE
Aruba 5406r Zl2 Firmware
aruba_5406r_zl2_firmware
1 CVE
Aruba 5412r Zl2 Firmware
aruba_5412r_zl2_firmware
1 CVE
Aruba 3810m Firmware
aruba_3810m_firmware
1 CVE
Aruba 2930m Firmware
aruba_2930m_firmware
1 CVE
Aruba 2930f Firmware
aruba_2930f_firmware
1 CVE
Aruba 2920 Firmware
aruba_2920_firmware
1 CVE
Aruba 2540 Firmware
aruba_2540_firmware
1 CVE
Aruba 2530ya Firmware
aruba_2530ya_firmware
1 CVE
Aruba 3800 Firmware
aruba_3800_firmware
1 CVE
Aruba 2620 Firmware
aruba_2620_firmware
1 CVE
Aruba 2530yb Firmware
aruba_2530yb_firmware
1 CVE
Instant Access Point
instant_access_point
0 CVEs
203rp
0 CVEs
203r
0 CVEs
Ap 300 Series Access Points
ap-300_series_access_points
0 CVEs
Ap 300 Series Instant Access Points
ap-300_series_instant_access_points
0 CVEs
5400r
0 CVEs
3810
0 CVEs
2920
0 CVEs
2930
0 CVEs
2530 With Gigt Port
2530_with_gigt_port
0 CVEs
2530 10/100 Port
2530_10/100_port
0 CVEs
2540
0 CVEs
Vx 500
vx-500
0 CVEs
Vx 1000
vx-1000
0 CVEs
Vx 2000
vx-2000
0 CVEs
Vx 3000
vx-3000
0 CVEs
Vx 5000
vx-5000
0 CVEs
Vx 6000
vx-6000
0 CVEs
Vx 7000
vx-7000
0 CVEs
Vx 9000
vx-9000
0 CVEs
Vx 8000
vx-8000
0 CVEs
Nx 700
nx-700
0 CVEs
Nx 1000
nx-1000
0 CVEs
Nx 2000
nx-2000
0 CVEs
Nx 3000
nx-3000
0 CVEs
Nx 5000
nx-5000
0 CVEs
Nx 6000
nx-6000
0 CVEs
Nx 7000
nx-7000
0 CVEs
Nx 8000
nx-8000
0 CVEs
Nx 9000
nx-9000
0 CVEs
Nx 10k
nx-10k
0 CVEs
Nx 11k
nx-11k
0 CVEs
2530
0 CVEs
Cx 6200f
cx_6200f
0 CVEs
Cx 6300
cx_6300
0 CVEs
Cx 6400
cx_6400
0 CVEs
Cx 8320
cx_8320
0 CVEs
Cx 8325
cx_8325
0 CVEs
Cx 8400
cx_8400
0 CVEs
7005
0 CVEs
7008
0 CVEs
7010
0 CVEs
7024
0 CVEs
7030
0 CVEs

CVEs (578)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-25616
1Arubanetworks
1Arubaos
Jul 28, 2025
Mar 5, 2024
N/A· v4
3.7 LOW· v3
N/A· v2
Aruba has identified certain configurations of ArubaOS that can lead to partial disclosure of sensitive information in the IKE_AUTH negotiation process. The scenarios in which disclosure of potentially sensitive informat...Show more
Aruba has identified certain configurations of ArubaOS that can lead to partial disclosure of sensitive information in the IKE_AUTH negotiation process. The scenarios in which disclosure of potentially sensitive information can occur are complex, and depend on factors beyond the control of attackers. Show less
CVE-2024-25615
1Arubanetworks
1Arubaos
Jul 28, 2025
Mar 5, 2024
N/A· v4
5.3 MEDIUM· v3
N/A· v2
An unauthenticated Denial-of-Service (DoS) vulnerability exists in the Spectrum service accessed via the PAPI protocol in ArubaOS 8.x. Successful exploitation of this vulnerability results in the ability to interrupt th...Show more
An unauthenticated Denial-of-Service (DoS) vulnerability exists in the Spectrum service accessed via the PAPI protocol in ArubaOS 8.x. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected service. Show less
CVE-2024-25614
1Arubanetworks
1Arubaos
Jul 28, 2025
Mar 5, 2024
N/A· v4
9.1 CRITICAL· v3
N/A· v2
There is an arbitrary file deletion vulnerability in the CLI used by ArubaOS. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could...Show more
There is an arbitrary file deletion vulnerability in the CLI used by ArubaOS. Successful exploitation of this vulnerability results in the ability to delete arbitrary files on the underlying operating system, which could lead to denial-of-service conditions and impact the integrity of the controller. Show less
CVE-2024-25613
1Arubanetworks
1Arubaos
Jul 28, 2025
Mar 5, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on th...Show more
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Show less
CVE-2024-25612
1Arubanetworks
1Arubaos
Jul 28, 2025
Mar 5, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on th...Show more
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Show less
CVE-2024-25611
1Arubanetworks
1Arubaos
Jul 28, 2025
Mar 5, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on th...Show more
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Show less
CVE-2024-1356
1Arubanetworks
1Arubaos
Jul 28, 2025
Mar 5, 2024
N/A· v4
7.2 HIGH· v3
N/A· v2
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on th...Show more
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Show less
CVE-2024-26302
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
4.8 MEDIUM· v3
N/A· v2
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful exploit allows an attacker t...Show more
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful exploit allows an attacker to retrieve information which could be used to potentially gain further access to network services supported by ClearPass Policy Manager. Show less
CVE-2024-26301
1Arubanetworks
1Clearpass Policy Manager
Dec 12, 2024
Feb 27, 2024
N/A· v4
6.5 MEDIUM· v3
N/A· v2
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful exploit allows an attacker t...Show more
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful exploit allows an attacker to retrieve information which could be used to potentially gain further access to network services supported by ClearPass Policy Manager. Show less
CVE-2024-26300
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
4.8 MEDIUM· v3
N/A· v2
A vulnerability in the guest interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A suc...Show more
A vulnerability in the guest interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface. Show less
CVE-2024-26299
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
4.8 MEDIUM· v3
N/A· v2
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the i...Show more
A vulnerability in the web-based management interface of ClearPass Policy Manager could allow an authenticated remote attacker to conduct a stored cross-site scripting (XSS) attack against an administrative user of the interface. A successful exploit allows an attacker to execute arbitrary script code in a victim's browser in the context of the affected interface. Show less
CVE-2024-26298
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Show less
CVE-2024-26297
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Show less
CVE-2024-26296
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Show less
CVE-2024-26295
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Show less
CVE-2024-26294
1Arubanetworks
1Clearpass Policy Manager
Mar 27, 2025
Feb 27, 2024
N/A· v4
8.8 HIGH· v3
N/A· v2
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute ar...Show more
Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Show less
CVE-2023-45627
2Arubanetworks
Hp
2Arubaos
Instantos
Nov 21, 2024
Nov 14, 2023
N/A· v4
6.5 MEDIUM· v3
N/A· v2
An authenticated Denial-of-Service (DoS) vulnerability exists in the CLI service. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected access point.
CVE-2023-45626
2Arubanetworks
Hp
2Arubaos
Instantos
Nov 21, 2024
Nov 14, 2023
N/A· v4
7.2 HIGH· v3
N/A· v2
An authenticated vulnerability has been identified allowing an attacker to effectively establish highly privileged persistent arbitrary code execution across boot cycles.
CVE-2023-45625
2Arubanetworks
Hp
2Arubaos
Instantos
Nov 21, 2024
Nov 14, 2023
N/A· v4
7.2 HIGH· v3
N/A· v2
Multiple authenticated command injection vulnerabilities exist in the command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on t...Show more
Multiple authenticated command injection vulnerabilities exist in the command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Show less
CVE-2023-45624
2Arubanetworks
Hp
2Arubaos
Instantos
Nov 21, 2024
Nov 14, 2023
N/A· v4
7.5 HIGH· v3
N/A· v2
An unauthenticated Denial-of-Service (DoS) vulnerability exists in the soft ap daemon accessed via the PAPI protocol. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation...Show more
An unauthenticated Denial-of-Service (DoS) vulnerability exists in the soft ap daemon accessed via the PAPI protocol. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected access point. Show less