Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2023-22774


Authenticated path traversal vulnerabilities exist in the ArubaOS command line interface. Successful exploitation of these vulnerabilities result in the ability to delete arbitrary files in the underlying operating system.


Published

2023-03-01T08:15:14.253

Last Modified

2025-03-07T21:15:14.310

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.2 (HIGH)

Weaknesses
  • Type: Primary
    CWE-22
  • Type: Secondary
    CWE-22

Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System arubanetworks arubaos ≤ 8.6.0.19 Yes
Operating System arubanetworks arubaos ≤ 8.10.0.4 Yes
Operating System arubanetworks arubaos ≤ 10.3.1.0 Yes
Hardware arubanetworks 7010 - No
Hardware arubanetworks 7030 - No
Hardware arubanetworks 7205 - No
Hardware arubanetworks 7210 - No
Hardware arubanetworks 7220 - No
Hardware arubanetworks 7240xm - No
Hardware arubanetworks 7280 - No
Hardware arubanetworks 9004 - No
Hardware arubanetworks 9004-lte - No
Hardware arubanetworks 9012 - No
Hardware arubanetworks mc-va-10 - No
Hardware arubanetworks mc-va-1k - No
Hardware arubanetworks mc-va-250 - No
Hardware arubanetworks mc-va-50 - No
Hardware arubanetworks mcr-hw-10k - No
Hardware arubanetworks mcr-hw-1k - No
Hardware arubanetworks mcr-hw-5k - No
Hardware arubanetworks mcr-va-10k - No
Hardware arubanetworks mcr-va-1k - No
Hardware arubanetworks mcr-va-50 - No
Hardware arubanetworks mcr-va-500 - No
Hardware arubanetworks mcr-va-5k - No
Application arubanetworks sd-wan ≤ 8.7.0.0-2.3.0.8 Yes

References