CVSS: 7.2EPSS: 0%CPEs: 26EXPL: 0CVE-2023-22764 – Authenticated Remote Command Execution in the ArubaOS Command Line Interface
https://notcve.org/view.php?id=CVE-2023-22764
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-002.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.2EPSS: 0%CPEs: 26EXPL: 0CVE-2023-22763 – Authenticated Remote Command Execution in the ArubaOS Command Line Interface
https://notcve.org/view.php?id=CVE-2023-22763
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-002.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 7.2EPSS: 0%CPEs: 26EXPL: 0CVE-2023-22762 – Authenticated Remote Command Execution in the ArubaOS Command Line Interface
https://notcve.org/view.php?id=CVE-2023-22762
Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2023-002.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 6.5EPSS: 0%CPEs: 15EXPL: 0CVE-2022-37908
https://notcve.org/view.php?id=CVE-2022-37908
An authenticated attacker can impact the integrity of the ArubaOS bootloader on 7xxx series controllers. Successful exploitation can compromise the hardware chain of trust on the impacted controller. Un atacante autenticado puede afectar la integridad del gestor de arranque de ArubaOS en los controladores de la serie 7xxx. Una explotación exitosa puede comprometer la cadena de confianza del hardware en el controlador afectado. • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-016.txt •
CVSS: 7.5EPSS: 0%CPEs: 15EXPL: 0CVE-2022-37907
https://notcve.org/view.php?id=CVE-2022-37907
A vulnerability exists in the ArubaOS bootloader on 7xxx series controllers which can result in a denial of service (DoS) condition on an impacted system. A successful attacker can cause a system hang which can only be resolved via a power cycle of the impacted controller. Existe una vulnerabilidad en bootloader de ArubaOS en los controladores de la serie 7xxx que puede provocar una condición de Denegación de Servicio (DoS) en un sistema afectado. Un atacante exitoso puede causar un bloqueo del sistema que solo puede resolverse mediante un ciclo de encendido del controlador afectado. • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2022-016.txt •