Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-37909

Aruba has identified certain configurations of ArubaOS that can lead to sensitive information disclosure from the configured ESSIDs. The scenarios in which disclosure of potentially sensitive information can occur are complex, and depend on factors beyond the control of attackers.

Published

2022-12-12T13:15:13.247

Last Modified

2025-05-02T19:15:52.460

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.3 (MEDIUM)

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
  • Type: Secondary
    CWE-200
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application arubanetworks sd-wan < 8.7.0.0-2.3.0.6 Yes
Operating System arubanetworks arubaos < 6.5.4.22 Yes
Operating System arubanetworks arubaos < 8.6.0.17 Yes
Operating System arubanetworks arubaos < 8.7.1.9 Yes
Operating System arubanetworks arubaos < 10.3.0.1 Yes
References