Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-22772


An authenticated path traversal vulnerability exists in the ArubaOS web-based management interface. Successful exploitation of this vulnerability results in the ability to delete arbitrary files in the underlying operating system.


Published

2023-03-01T08:15:14.100

Last Modified

2025-03-07T21:15:14.017

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-22
  • Type: Secondary
    CWE-22

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application arubanetworks sd-wan ≤ 8.7.0.0-2.3.0.8 Yes
Operating System arubanetworks arubaos ≤ 8.6.0.19 Yes
Operating System arubanetworks arubaos ≤ 8.10.0.4 Yes
Operating System arubanetworks arubaos ≤ 10.3.1.0 Yes

References