CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2024-25615
https://notcve.org/view.php?id=CVE-2024-25615
05 Mar 2024 — An unauthenticated Denial-of-Service (DoS) vulnerability exists in the Spectrum service accessed via the PAPI protocol in ArubaOS 8.x. Successful exploitation of this vulnerability results in the ability to interrupt the normal operation of the affected service. Existe una vulnerabilidad de denegación de servicio (DoS) no autenticada en el servicio Spectrum al que se accede a través del protocolo PAPI en ArubaOS 8.x. La explotación exitosa de esta vulnerabilidad da como resultado la capacidad de interrumpir... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-002.txt • CWE-400: Uncontrolled Resource Consumption •
CVSS: 9.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-25613
https://notcve.org/view.php?id=CVE-2024-25613
05 Mar 2024 — Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Existen vulnerabilidades de inyección de comandos autenticadas en la interfaz de línea de comandos de ArubaOS. La explotación exitosa de estas vulnerabilidades da como resultado la capacidad de ejecutar comandos arbitrarios como usuario privilegiado en el siste... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-002.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-25612
https://notcve.org/view.php?id=CVE-2024-25612
05 Mar 2024 — Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Existen vulnerabilidades de inyección de comandos autenticadas en la interfaz de línea de comandos de ArubaOS. La explotación exitosa de estas vulnerabilidades da como resultado la capacidad de ejecutar comandos arbitrarios como usuario privilegiado en el siste... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-002.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-25611
https://notcve.org/view.php?id=CVE-2024-25611
05 Mar 2024 — Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Existen vulnerabilidades de inyección de comandos autenticadas en la interfaz de línea de comandos de ArubaOS. La explotación exitosa de estas vulnerabilidades da como resultado la capacidad de ejecutar comandos arbitrarios como usuario privilegiado en el siste... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-002.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.0EPSS: 1%CPEs: 2EXPL: 0CVE-2024-1356
https://notcve.org/view.php?id=CVE-2024-1356
05 Mar 2024 — Authenticated command injection vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to execute arbitrary commands as a privileged user on the underlying operating system. Existen vulnerabilidades de inyección de comandos autenticadas en la interfaz de línea de comandos de ArubaOS. La explotación exitosa de estas vulnerabilidades da como resultado la capacidad de ejecutar comandos arbitrarios como usuario privilegiado en el siste... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-002.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 6.8EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26301
https://notcve.org/view.php?id=CVE-2024-26301
27 Feb 2024 — A vulnerability in the web-based management interface of ClearPass Policy Manager could allow a remote attacker authenticated with low privileges to access sensitive information. A successful exploit allows an attacker to retrieve information which could be used to potentially gain further access to network services supported by ClearPass Policy Manager. Una vulnerabilidad en la interfaz de administración basada en web de ClearPass Policy Manager podría permitir que un atacante remoto autenticado con privil... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-001.txt •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26298
https://notcve.org/view.php?id=CVE-2024-26298
27 Feb 2024 — Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Las vulnerabilidades en la interfaz de administración basada en web de ClearPass Policy Manager permiten a usuarios remotos autenticados ejecutar comandos arbitrarios en el host subyacente. Un ... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-001.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26297
https://notcve.org/view.php?id=CVE-2024-26297
27 Feb 2024 — Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Las vulnerabilidades en la interfaz de administración basada en web de ClearPass Policy Manager permiten a usuarios remotos autenticados ejecutar comandos arbitrarios en el host subyacente. Un ... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-001.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26296
https://notcve.org/view.php?id=CVE-2024-26296
27 Feb 2024 — Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Las vulnerabilidades en la interfaz de administración basada en web de ClearPass Policy Manager permiten a usuarios remotos autenticados ejecutar comandos arbitrarios en el host subyacente. Un ... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-001.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •
CVSS: 9.0EPSS: 0%CPEs: 1EXPL: 0CVE-2024-26295
https://notcve.org/view.php?id=CVE-2024-26295
27 Feb 2024 — Vulnerabilities in the ClearPass Policy Manager web-based management interface allow remote authenticated users to run arbitrary commands on the underlying host. A successful exploit could allow an attacker to execute arbitrary commands as root on the underlying operating system leading to complete system compromise. Las vulnerabilidades en la interfaz de administración basada en web de ClearPass Policy Manager permiten a usuarios remotos autenticados ejecutar comandos arbitrarios en el host subyacente. Un ... • https://www.arubanetworks.com/assets/alert/ARUBA-PSA-2024-001.txt • CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection') •