Airwave - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Airwave
(Arubanetworks)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	34

Date	Id	Summary	Products	Score	Patch	Annotated
2023-09-05	CVE-2015-2201	Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows VisualRF remote OS command execution and file disclosure by administrative users.	Airwave, Airwave	7.2
2023-09-05	CVE-2015-2202	Aruba AirWave before 7.7.14.2 and 8.x before 8.0.7 allows administrative users to escalate privileges to root on the underlying OS.	Airwave, Airwave	7.2
2020-01-31	CVE-2016-2031	Multiple vulnerabilities exists in Aruba Instate before 4.1.3.0 and 4.2.3.1 due to insufficient validation of user-supplied input and insufficient checking of parameters, which could allow a malicious user to bypass security restrictions, obtain sensitive information, perform unauthorized actions and execute arbitrary code.	Airwave, Aruba_instant, Arubaos, Scalance_w1750d_firmware	9.8
2021-04-28	CVE-2021-25154	A remote escalation of privilege vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.	Airwave	7.5
2021-04-29	CVE-2021-25167	A remote unauthorized access vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.	Airwave	8.8
2021-08-26	CVE-2021-37715	A remote cross-site scripting (XSS) vulnerability was discovered in Aruba AirWave Management Platform version(s): Prior to 8.2.13.0. Aruba has released upgrades for the Aruba AirWave Management Platform that address this security vulnerability.	Airwave	4.8
2021-04-28	CVE-2021-25152	A remote insecure deserialization vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.	Airwave	7.2
2021-04-28	CVE-2021-25147	A remote authentication restriction bypass vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.	Airwave	8.1
2021-04-28	CVE-2021-25151	A remote insecure deserialization vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.	Airwave	8.8
2021-04-28	CVE-2021-25164	A remote XML external entity vulnerability was discovered in Aruba AirWave Management Platform version(s) prior to 8.2.12.1. Aruba has released patches for AirWave Management Platform that address this security vulnerability.	Airwave	6.5